CVE-2025-48301

CVSS v3.1

7.6

High

Vector

AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions YaySMTP versions n/a through 1.5

Description YaySMTP contains a SQL injection flaw. The flaw is due to improper neutralization of special elements used in an SQL command.

Recommendations Versions prior to 1.6 are affected.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-48301

Yaysmtp