53 matches found
CVE-2025-48161
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...
CVE-2025-48299
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...
CVE-2025-48301
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for SendGrid – YaySMTP smtp-sendgrid allows SQL Injection.This issue affects SMTP for SendGrid – YaySMTP: from n/a through = 1.5...
CVE-2025-54043
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...
CVE-2025-48299
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...
CVE-2025-48161
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...
CVE-2025-48161 WordPress YaySMTP plugin <= 1.3 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...
CVE-2025-48301
CVE-2025-48301 is an SQL Injection vulnerability in the WordPress plugin SMTP for SendGrid – YaySMTP (versions = 1.6. Connected documents corroborate the vulnerability and patch trajectory; no exploits are detailed in the provided material.
CVE-2025-48299 WordPress YayExtra plugin <= 1.5.5 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...
CVE-2025-48301 WordPress SMTP for SendGrid – YaySMTP plugin <= 1.5 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for SendGrid – YaySMTP smtp-sendgrid allows SQL Injection.This issue affects SMTP for SendGrid – YaySMTP: from n/a through = 1.5...
CVE-2025-54043 WordPress SMTP for Amazon SES plugin <= 1.9 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...
CVE-2025-54043 WordPress SMTP for Amazon SES plugin <= 1.9 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...
CVE-2025-54043
CVE-2025-54043 : WordPress SMTP for Amazon SES (YayCommerce SMTP) contains a SQL Injection in versions n/a through 1.9 due to improper neutralization of special elements in SQL commands. The CVSS v3.1 score is 7.6 (HIGH) with network attack vector, low attack complexity, and user interaction requ...
PT-2025-29730 · Yaycommerce · Yaycommerce Yayextra
Name of the Vulnerable Software and Affected Versions: YayCommerce YayExtra versions through 1.5.5 Description: YayCommerce YayExtra is susceptible to a SQL injection flaw due to improper neutralization of special elements within SQL commands. This allows for potential manipulation of database...
PT-2025-29764 · Yaycommerce · Yaycommerce Smtp For Amazon Ses
Name of the Vulnerable Software and Affected Versions: YayCommerce SMTP for Amazon SES versions n/a through 1.9 Description: A SQL Injection issue exists in YayCommerce SMTP for Amazon SES. The vulnerability is due to improper neutralization of special elements used in an SQL command...
CVE-2025-53256
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP yaysmtp allows SQL Injection.This issue affects YaySMTP: from n/a through = 2.6.6...
CVE-2025-53256 WordPress YaySMTP plugin <= 2.6.6 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP yaysmtp allows SQL Injection.This issue affects YaySMTP: from n/a through = 2.6.6...
CVE-2025-53256 WordPress YaySMTP plugin <= 2.6.5 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP allows SQL Injection.This issue affects YaySMTP: from n/a through 2.6.5...
CVE-2025-53256
CVE-2025-53256 describes an SQL Injection vulnerability in the WordPress plugin YaySMTP (YayCommerce) stemming from improper neutralization of SQL elements. Public references indicate the issue affects YaySMTP up to version 2.6.5 (and Patchstack lists a later patched release, e.g., 2.6.6, as addr...
PT-2025-27163 · Yaycommerce · Yaysmtp
Name of the Vulnerable Software and Affected Versions: YayCommerce YaySMTP versions n/a through 6.8.1 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...