CVE-2025-52819: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in pakkemx Pakke Envíos
Severity: highType: vulnerabilityCVE-2025-52819
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pakkemx Pakke Envíos allows SQL Injection. This issue affects Pakke Envíos: from n/a through 1.0.2.
CVE-2025-52819: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in pakkemx Pakke Envíos
High
Published: Wed Jul 16 2025 (07/16/2025, 11:27:53 UTC)
Source: CVE Database V5
Vendor/Project: pakkemx
Product: Pakke Envíos
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pakkemx Pakke Envíos allows SQL Injection. This issue affects Pakke Envíos: from n/a through 1.0.2.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Patchstack
- Date Reserved
- 2025-06-19T10:03:43.798Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 6877910aa83201eaacda58ef
Added to database: 7/16/2025, 11:46:18 AM
Last updated: 7/16/2025, 11:46:18 AM
Views: 1
Related Threats
CVE-2025-53758: CWE-312: Cleartext Storage of Sensitive Information in Digisol XPON ONU Wi-Fi Router (DG-GR6821AC)
MediumVulnerabilityWed Jul 16 2025
CVE-2025-53757: CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in Digisol XPON ONU Wi-Fi Router (DG-GR6821AC)
HighVulnerabilityWed Jul 16 2025
CVE-2025-52836: CWE-266 Incorrect Privilege Assignment in Unity Business Technology Pty Ltd The E-Commerce ERP
CriticalVulnerabilityWed Jul 16 2025
CVE-2025-52804: CWE-862 Missing Authorization in uxper Nuss
HighVulnerabilityWed Jul 16 2025
CVE-2025-52803: CWE-862 Missing Authorization in uxper Sala
HighVulnerabilityWed Jul 16 2025
Actions
Please log in to the Console to use AI analysis features.
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.