PT-2026-25213 · Robfelty · Collapsing Categories
Doan Dinh Van
·
Published
2026-03-13
·
Updated
2026-03-15
·
CVE-2026-32366
CVSS v3.1
8.5
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
robfelty Collapsing Categories versions through 3.0.9
Description
The software contains an Improper Neutralization of Special Elements used in an SQL Command issue, specifically a Blind SQL Injection. This allows for potential unauthorized access to or modification of data within the database. The issue stems from improper handling of special elements in SQL commands.
Recommendations
Versions prior to 3.0.9 should be updated.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Collapsing Categories