Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

链接： https://github.com/advisories/GHSA-mq8r-5fmf-75cw

CVSS 评分： 9.3

参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2025-52830
https://patchstack.com/database/wordpress/plugin/bsecure/vulnerability/wordpress-bsecure-your-universal-checkout-1-7-9-sql-injection-vulnerability?_s_id=cve
https://github.com/advisories/GHSA-mq8r-5fmf-75cw

描述：

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in bsecuretech bSecure – Your Universal Checkout allows Blind SQL Injection. This issue affects bSecure – Your Universal Checkout: from n/a through 1.7.9.

安全公告

#Github Advisory

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

http://example.com/2025/07/04/github_3098525848/

作者

lianccc

发布于

2025年7月4日

许可协议

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 上一篇

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 下一篇