PT-2026-1794 · Ricetheme · Ricetheme Felan Framework
Publicado
2026-01-08
·
Atualizado
2026-01-08
·
CVE-2025-23993
CVSS v3.1
9.3
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
RiceTheme Felan Framework versions through 1.1.3
Description
The RiceTheme Felan Framework contains a flaw related to improper handling of special characters within SQL queries, potentially leading to SQL Injection. This could allow an attacker to manipulate database queries, potentially gaining unauthorized access to data or modifying database content. The affected component is the felan-framework.
Recommendations
Update to a version of RiceTheme Felan Framework later than 1.1.3.
Correção
SQL injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ricetheme Felan Framework