SMTP for Sendinblue – YaySMTP, CVE-2025-48161

CVE, Research URL: CVE-2025-48161
Home page URL: Security reports for SMTP for Sendinblue – YaySMTP
Application: SMTP for Sendinblue – YaySMTP
Published on: Jul 16, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce YaySMTP allows SQL Injection. This issue affects YaySMTP: from n/a through 1.3.
Affected versions: Min -, max 1.3.1.
Status: vulnerable

SMTP for Sendinblue &#8211; YaySMTP, CVE-2025-48161