CRITICAL
Cargo RD
CVE published 2026-06-17
CVE-2026-54815
A critical SQL injection vulnerability, tracked as CVE-2026-54815, was discovered in the Cargo Shipping Location for WooCommerce plugin. This issue allows for Blind SQL Injection and has a CVSS score of 9.3. The vulnerability exists due to improper neutralization of special elements used in SQL commands. The affected product is the Cargo Shipping Location for WooCommerce plugin, and users with untrusted u [truncated]