CVE-2025-59473

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-59473

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-59473.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-59473

Published

2026-01-26T22:15:53.157Z

Modified

2026-04-10T05:32:04.066231Z

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

SQL Injection vulnerability in the Structure for Admin authenticated user

References

https://hackerone.com/reports/3249794

Affected packages

Git / github.com/expressionengine/expressionengine

Affected ranges

Type

GIT

Repo

https://github.com/expressionengine/expressionengine

Events

Introduced

0a5a5d07e1a54694e5599d8ed641e3ef97844896

Fixed

176c436aaa8572e993f9d4a8481a0bb92ab00fc1

Database specific

{
    "versions": [
        {
            "introduced": "7.0.0"
        },
        {
            "fixed": "7.5.14"
        }
    ]
}

Affected versions

7.*

7.0.0

7.0.1

7.0.2

7.0.3

7.1.0

7.1.1

7.1.2

7.1.3

7.1.4

7.1.5

7.1.6

7.2.0

7.2.1

7.2.10

7.2.11

7.2.12

7.2.13

7.2.14

7.2.15

7.2.16

7.2.17

7.2.2

7.2.3

7.2.4

7.2.5

7.2.6

7.2.7

7.2.8

7.2.9

7.3.0

7.3.1

7.3.10

7.3.11

7.3.12

7.3.13

7.3.14

7.3.15

7.3.2

7.3.3

7.3.4

7.3.5

7.3.6

7.3.7

7.3.8

7.3.9

7.4.0

7.4.1

7.4.10

7.4.11

7.4.2

7.4.3

7.4.4

7.4.5

7.4.6

7.4.7

7.4.8

7.4.9

7.5.0

7.5.1

7.5.10

7.5.11

7.5.12

7.5.13

7.5.2

7.5.3

7.5.4

7.5.5

7.5.6

7.5.7

7.5.8

7.5.9

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-59473.json"