CVE-2026-25993 | evershopcommerce evershop up to 2.1.0 execute sql injection (GHSA-3h84-9rhc-j2ch)

Inserito da Angelo Barbosa | Feb 10, 2026 | CVE

A vulnerability was found in evershopcommerce evershop up to 2.1.0 and classified as critical. This affects the function execute. The manipulation results in sql injection.

This vulnerability is reported as CVE-2026-25993. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-25993 | evershopcommerce evershop up to 2.1.0 execute sql injection (GHSA-3h84-9rhc-j2ch)

Post correlati

CVE-2025-6103 | Wifi-soft UniBox Controller up to 20250506 test_accesscodelogin.php Password os command injection

CVE-2024-2252 | Droit Elementor Addons Plugin up to 3.1.5 on WordPress cross site scripting

CVE-2024-57521 | RuoYi up to 4.7.9 SqlUtil.java createTable sql injection

CVE-2025-14567 | haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0 /api/employees missing authentication