PT-2026-21148 · Unknown · Teconcetheme Emerce Core
Published
2026-02-20
·
Updated
2026-02-22
·
CVE-2025-69366
CVSS v3.1
9.3
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
TeconceTheme Emerce Core versions through 1.8
Description
A flaw exists in TeconceTheme Emerce Core that allows for Blind SQL Injection due to improper neutralization of special elements used in SQL commands. This issue affects the emerce-core component.
Recommendations
Versions prior to 1.9 are vulnerable and should be updated.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Teconcetheme Emerce Core