High severity7.6NVD Advisory· Published Jul 16, 2025· Updated Apr 23, 2026
CVE-2025-48299
CVE-2025-48299
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce YayExtra yayextra allows SQL Injection.This issue affects YayExtra: from n/a through <= 1.5.5.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.5.5+ 1 more
- (no CPE)range: <=1.5.5
- (no CPE)range: <=1.5.5
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.