3 matches found
WordPress YaySMTP plugin <= 1.3 - SQL Injection Vulnerability
SQL Injection Vulnerability discovered by Lê Quốc Bảo in WordPress Plugin YaySMTP versions = 1.3...
CVE-2025-48161
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP smtp-sendinblue allows SQL Injection.This issue affects YaySMTP: from n/a through = 1.3...
CVE-2025-48161
CVE-2025-48161 affects WordPress YaySMTP plugin: SQL Injection due to improper neutralization of special elements. Affected versions are n/a through 1.3; Wordfence lists it as patched (vulnerability entries show Patched) and PT-Security notes “Versions prior to 1.4 are affected,” implying fixes e...