Lucene search
K

4 matches found

CVE
CVE
added 2025/07/16 10:36 a.m.23 views

CVE-2025-48161

CVE-2025-48161 affects WordPress YaySMTP plugin: SQL Injection due to improper neutralization of special elements. Affected versions are n/a through 1.3; Wordfence lists it as patched (vulnerability entries show Patched) and PT-Security notes “Versions prior to 1.4 are affected,” implying fixes e...

7.6CVSS5.9AI score0.00355EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.4 views

PT-2025-29731 · Yaysmtp · Yaysmtp

Name of the Vulnerable Software and Affected Versions: YaySMTP versions n/a through 1.5 Description: YaySMTP contains a SQL injection flaw. The flaw is due to improper neutralization of special elements used in an SQL command. Recommendations: Versions prior to 1.6 are affected...

7.6CVSS7.1AI score0.00355EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.6 views

PT-2025-29725 · Yaysmtp · Yaysmtp

Name of the Vulnerable Software and Affected Versions: YaySMTP versions n/a through 1.3 Description: YaySMTP is susceptible to a SQL injection flaw due to improper neutralization of special elements within SQL commands. This issue could allow for unauthorized database access or modification...

7.6CVSS7.1AI score0.00355EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/05/07 2:20 p.m.17 views

CVE-2025-47587 WordPress YaySMTP plugin <= 2.6.4 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce YaySMTP yaysmtp allows Blind SQL Injection.This issue affects YaySMTP: from n/a through = 2.6.4...

7.6CVSS0.00355EPSS
Exploits0References1
Rows per page
Query Builder