Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.3
Allmart: SQL Injection in TeconceTheme Allmart allmart-core
CVE-2025-69304
Summary
A security issue in Allmart's TeconceTheme allmart-core software allows attackers to access sensitive data by manipulating SQL commands. This could lead to unauthorized access to sensitive information. Update to the latest version of Allmart (1.2 or higher) to fix this issue.
Original title
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n...
Original description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TeconceTheme Allmart allmart-core allows Blind SQL Injection.This issue affects Allmart: from n/a through <= 1.1.
nvd CVSS3.1
9.3
Vulnerability type
CWE-89
SQL Injection
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026