CVE-2025-59473

SQL Injection vulnerability in the Structure for Admin authenticated user...

CVE-2025-59473

SQL Injection vulnerability in the Structure for Admin authenticated user...

CVE-2025-59473

CVE-2025-59473 is a SQL injection vulnerability reported in the ExpressionEngine Structure plugin, arising when an admin-authenticated user supplies input (notably via channel_ids in Structure) that is directly embedded in SQL queries. The Red Hat, CIRCL, NVD, EUVD, CVE lists, and HackerOne repor...

CVE-2025-59473

SQL Injection vulnerability in the Structure for Admin authenticated user...