Lucene search
K

53 matches found

RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.5 views

CVE-2025-48161

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.4 views

CVE-2025-48299

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.6 views

CVE-2025-48301

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for SendGrid – YaySMTP smtp-sendgrid allows SQL Injection.This issue affects SMTP for SendGrid – YaySMTP: from n/a through = 1.5...

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 11:15 a.m.16 views

CVE-2025-54043

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...

7.6CVSS0.00288EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 11:15 a.m.6 views

CVE-2025-48299

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...

7.6CVSS0.00355EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 11:15 a.m.5 views

CVE-2025-48161

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...

7.6CVSS0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 10:36 a.m.13 views

CVE-2025-48161 WordPress YaySMTP plugin <= 1.3 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...

7.6CVSS0.00355EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 10:36 a.m.18 views

CVE-2025-48301

CVE-2025-48301 is an SQL Injection vulnerability in the WordPress plugin SMTP for SendGrid – YaySMTP (versions = 1.6. Connected documents corroborate the vulnerability and patch trajectory; no exploits are detailed in the provided material.

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.3 views

CVE-2025-48299 WordPress YayExtra plugin <= 1.5.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through = 1.5.5...

7.6CVSS5.6AI score0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.5 views

CVE-2025-48301 WordPress SMTP for SendGrid – YaySMTP plugin <= 1.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for SendGrid – YaySMTP smtp-sendgrid allows SQL Injection.This issue affects SMTP for SendGrid – YaySMTP: from n/a through = 1.5...

7.6CVSS5.6AI score0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.7 views

CVE-2025-54043 WordPress SMTP for Amazon SES plugin <= 1.9 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...

7.6CVSS5.9AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 10:36 a.m.11 views

CVE-2025-54043 WordPress SMTP for Amazon SES plugin <= 1.9 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...

7.6CVSS0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 10:36 a.m.24 views

CVE-2025-54043

CVE-2025-54043 : WordPress SMTP for Amazon SES (YayCommerce SMTP) contains a SQL Injection in versions n/a through 1.9 due to improper neutralization of special elements in SQL commands. The CVSS v3.1 score is 7.6 (HIGH) with network attack vector, low attack complexity, and user interaction requ...

7.6CVSS5.9AI score0.00288EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.5 views

PT-2025-29730 · Yaycommerce · Yaycommerce Yayextra

Name of the Vulnerable Software and Affected Versions: YayCommerce YayExtra versions through 1.5.5 Description: YayCommerce YayExtra is susceptible to a SQL injection flaw due to improper neutralization of special elements within SQL commands. This allows for potential manipulation of database...

7.6CVSS7.2AI score0.00355EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.4 views

PT-2025-29764 · Yaycommerce · Yaycommerce Smtp For Amazon Ses

Name of the Vulnerable Software and Affected Versions: YayCommerce SMTP for Amazon SES versions n/a through 1.9 Description: A SQL Injection issue exists in YayCommerce SMTP for Amazon SES. The vulnerability is due to improper neutralization of special elements used in an SQL command...

7.6CVSS7.4AI score0.00288EPSS
Exploits0References5
NVD
NVD
added 2025/06/27 2:15 p.m.8 views

CVE-2025-53256

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP yaysmtp allows SQL Injection.This issue affects YaySMTP: from n/a through = 2.6.6...

7.6CVSS0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/27 1:21 p.m.13 views

CVE-2025-53256 WordPress YaySMTP plugin <= 2.6.6 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP yaysmtp allows SQL Injection.This issue affects YaySMTP: from n/a through = 2.6.6...

7.6CVSS0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/27 1:21 p.m.4 views

CVE-2025-53256 WordPress YaySMTP plugin <= 2.6.5 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP allows SQL Injection.This issue affects YaySMTP: from n/a through 2.6.5...

7.6CVSS7.2AI score0.00355EPSS
Exploits0References1
CVE
CVE
added 2025/06/27 1:21 p.m.24 views

CVE-2025-53256

CVE-2025-53256 describes an SQL Injection vulnerability in the WordPress plugin YaySMTP (YayCommerce) stemming from improper neutralization of SQL elements. Public references indicate the issue affects YaySMTP up to version 2.6.5 (and Patchstack lists a later patched release, e.g., 2.6.6, as addr...

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.5 views

PT-2025-27163 · Yaycommerce · Yaysmtp

Name of the Vulnerable Software and Affected Versions: YayCommerce YaySMTP versions n/a through 6.8.1 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

7.6CVSS7.8AI score0.00355EPSS
Exploits0References3
Rows per page
Query Builder