CVE-2026-25993 | evershopcommerce evershop up to 2.1.0 execute sql injection (GHSA-3h84-9rhc-j2ch)

Inserito da Angelo Barbosa | Feb 10, 2026 | CVE

A vulnerability was found in evershopcommerce evershop up to 2.1.0 and classified as critical. This affects the function execute. The manipulation results in sql injection.

This vulnerability is reported as CVE-2026-25993. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-25993 | evershopcommerce evershop up to 2.1.0 execute sql injection (GHSA-3h84-9rhc-j2ch)

Post correlati

CVE-2024-32345 | CMSimple 5.15 Language Section Configuration cross site scripting

CVE-2025-15254 | Tenda W6-S 1.0.0.4(510) ATE Service /goform/ate TendaAte os command injection

CVE-2025-7541 | code-projects Online Appointment Booking System 1.0 /get_town.php countryid sql injection

CVE-2025-6994 | Reveal Listing Plugin up to 3.3 on WordPress listing_user_role Remote Code Execution