CVE Catalog
CVE-2026-52693
CriticalCVSS 9.3Exploitation Probability (EPSS)
Low risk0.30%
21th percentile — higher than 21% of all known CVEs
Summary
Versions of the eCommerce Product Catalog up to 3.5.5 are vulnerable to unauthenticated SQL injection.
Risk Assessment
An attacker could exploit this vulnerability to gain access to sensitive data in the database, potentially leading to serious security breaches.
Recommendation
It is recommended to upgrade to the latest version of the eCommerce Product Catalog to mitigate this vulnerability.
Original NVD description (English source)
Unauthenticated SQL Injection in eCommerce Product Catalog <= 3.5.5 versions.

