CVE-2025-0699 | JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d /admin/sys/role/list sort sql injection

Inserito da Angelo Barbosa | Gen 24, 2025 | CVE

A vulnerability was found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/sys/role/list. The manipulation of the argument sort leads to sql injection.

This vulnerability is known as CVE-2025-0699. The attack can be launched remotely. Furthermore, there is an exploit available.

This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

CVE-2025-0699 | JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d /admin/sys/role/list sort sql injection

Post correlati

CVE-2023-50956 | IBM Storage Defender up to 2.0.9 Resiliency Service credentials storage

CVE-2025-0802 | SourceCodester Best Employee Management System 1.0 Administrative Endpoint /admin/View_user.php access control

CVE-2024-11774 | Outdooractive Embed Plugin up to 1.5 on WordPress cross site scripting

CVE-2023-6851 | kalcaddle KodExplorer up to 4.51.03 ZIP Archive plugins/zipView/app.php unzipList code injection