CVE-2011-10026 | Spreecommerce up to 0.49.x API Search search[instance_eval] code injection

Inserito da Angelo Barbosa | Ago 20, 2025 | CVE

A vulnerability, which was classified as critical, was found in Spreecommerce up to 0.49.x. This affects an unknown function of the component API Search. Executing manipulation of the argument search[instance_eval] can lead to code injection.

This vulnerability is tracked as CVE-2011-10026. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2011-10026 | Spreecommerce up to 0.49.x API Search search[instance_eval] code injection

Post correlati

CVE-2024-29999 | Microsoft unknown vulnerability

CVE-2024-2016 | ZhiCms 4.0 setcontroller.php index sitename code injection

CVE-2023-47124 | Traefik 2.10.5/3.0.0-beta4 HTTPChallenge Slowloris release of resource (GHSA-8g85-whqh-cr2f)

CVE-2025-23118 | Ubiquiti UniFi Protect Cameras up to 4.74.105 certificate validation