Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.3
Riode Core: Malicious Requests Can Expose Sensitive Data
CVE-2025-69338
Summary
The Riode Core software has a security flaw that makes it possible for hackers to access sensitive information by sending special requests to the system. This could lead to the theft of confidential data or unauthorized access to the system. To protect your site, update Riode Core to the latest version (1.6.27 or later).
Original title
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in don-themes Riode Core riode-core allows Blind SQL Injection.This issue affects Riode Core: from...
Original description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in don-themes Riode Core riode-core allows Blind SQL Injection.This issue affects Riode Core: from n/a through <= 1.6.26.
nvd CVSS3.1
9.3
Vulnerability type
CWE-89
SQL Injection
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026