PT-2026-1904 · Unknown · Themesuite Automotive Listings
Published
2026-01-08
·
Updated
2026-01-08
·
CVE-2025-67928
CVSS v3.1
9.3
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
themesuite Automotive Listings versions n/a through 18.6
Description
An issue exists in themesuite Automotive Listings that allows for Blind SQL Injection due to Improper Neutralization of Special Elements used in an SQL Command. This allows an attacker to potentially manipulate database queries. The vulnerable component is susceptible to exploitation through SQL injection techniques.
Recommendations
Update themesuite Automotive Listings to a version greater than 18.6.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Themesuite Automotive Listings