Security vulnerability in Curcy Premium 2.4.0 – Jetpack flagging SQL Injection

Author

Posts
May 11, 2026 at 3:53 pm #258523

Sophie Parou
Participant

I purchased Curcy Premium 2.4.0 two days ago via CodeCanyon.

Jetpack Protect is flagging a critical security vulnerability in this version:
– CVSS Score: 9.3
– Type: SQL Injection
– Status: Highly dangerous, expected to become mass exploited

This is affecting my live WooCommerce store at essencesamazigh.com

Please advise:
1. Is a patched version available?
2. When will a fix be released?
3. Is there any immediate mitigation I can apply?

Thank you
Author

Posts

You must be logged in to see replies to this topic. Click here to login or register

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. View more