exploitDog

GHSA-c6m4-w393-jw6p

Опубликовано: 16 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.6

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce SMTP for Amazon SES allows SQL Injection. This issue affects SMTP for Amazon SES: from n/a through 1.9.

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce SMTP for Amazon SES allows SQL Injection. This issue affects SMTP for Amazon SES: from n/a through 1.9.

Ссылки

EPSS

Процентиль: 9%

0.00032

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-54043

CVSS3: 7.6

nvd

7 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce SMTP for Amazon SES allows SQL Injection. This issue affects SMTP for Amazon SES: from n/a through 1.9.

EPSS

Процентиль: 9%

0.00032

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-89