CVE-2025-47682

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision Technologies Pvt. Ltd. SMS Alert Order Notifications – WooCommerce allows SQL Injection.This issue affects SMS Alert Order Notifications – WooCommerce: from n/a through 3.8.2.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cozyvision:sms_alert_order_notifications:*:*:*:*:free:wordpress:*:*

History

09 Jul 2025, 01:36

Type Values Removed Values Added
CPE cpe:2.3:a:cozyvision:sms_alert_order_notifications:*:*:*:*:free:wordpress:*:*
References () https://patchstack.com/database/wordpress/plugin/sms-alert/vulnerability/wordpress-sms-alert-order-notifications-woocommerce-3-8-1-sql-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/wordpress/plugin/sms-alert/vulnerability/wordpress-sms-alert-order-notifications-woocommerce-3-8-1-sql-injection-vulnerability?_s_id=cve - Third Party Advisory
First Time Cozyvision
Cozyvision sms Alert Order Notifications

13 May 2025, 19:35

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un comando SQL ('Inyección SQL') en Cozy Vision Technologies Pvt. Ltd. SMS Alert Order Notifications – WooCommerce permiten la inyección SQL. Este problema afecta a SMS Alert Order Notifications – WooCommerce: desde n/d hasta 3.8.2.

12 May 2025, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-12 19:15

Updated : 2025-07-09 01:36


NVD link : CVE-2025-47682

Mitre link : CVE-2025-47682

CVE.ORG link : CVE-2025-47682


JSON object : View

Products Affected

cozyvision

  • sms_alert_order_notifications
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')