VYPR
High severity7.6NVD Advisory· Published May 20, 2026· Updated May 20, 2026

CVE-2026-42383

CVE-2026-42383

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Blind SQL Injection.

This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.29.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

1