SMTP for Sendinblue – YaySMTP, CVE-2025-48161
- CVE, Research URL
- Home page URL
- Application
- Published on
- Jul 16, 2025
- Research Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce YaySMTP allows SQL Injection. This issue affects YaySMTP: from n/a through 1.3.
- Affected versions
-
Min -, max 1.3.1.
- Status
-
vulnerable