PT-2026-1794 · Ricetheme · Ricetheme Felan Framework
Published
2026-01-08
·
Updated
2026-01-08
·
CVE-2025-23993
CVSS v3.1
9.3
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
RiceTheme Felan Framework versions through 1.1.3
Description
The RiceTheme Felan Framework contains a flaw related to improper handling of special characters within SQL queries, potentially leading to SQL Injection. This could allow an attacker to manipulate database queries, potentially gaining unauthorized access to data or modifying database content. The affected component is the felan-framework.
Recommendations
Update to a version of RiceTheme Felan Framework later than 1.1.3.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ricetheme Felan Framework