CVE-2025-48278

Name of the Vulnerable Software and Affected Versions: davidfcarr RSVPMarker versions n/a through 11.5.6

Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks, potentially leading to system breaches.

Recommendations: For versions n/a through 11.5.6, update to a version later than 11.5.6 to resolve the SQL Injection issue. As a temporary workaround, consider restricting access to SQL commands to minimize the risk of exploitation.