CVE-2025-68857

Publication date

2026-01-22 16:52:09

Family

Patchstack

State

PUBLISHED

Description

Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) vulnerability in ichurakov Paid Downloads paid-downloads allows Blind SQL Injection.This issue affects Paid Downloads: from n/a through <= 3.15.