CVE-2026-57702
CRITICAL
9.3
CVSS 3.1
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Melograno Venture Studio Amelia ameliabooking allows Blind SQL Injection.This issue affects Amelia: from n/a through <= 2.4.2.
Metadata
Severity & Metrics
9.3
CRITICAL CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Melograno Venture Studio | Amelia | — | 0 ≤ 2.4.2 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-89 | cna | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 9.3 | CRITICAL | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |