VYPR
High severity7.2NVD Advisory· Published Feb 25, 2025· Updated Jun 17, 2026

CVE-2025-22210

CVE-2025-22210

Description

A SQL injection vulnerability in the Hikashop component versions 3.3.0-5.1.4 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands in the category management area in backend.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: 3.3.0-5.1.4
  • hikashop.com/Hikashop component for Joomlav5
    Range: 3.3.0-5.1.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.