CVE-2025-57423 | MyClub 0.5 GET Request /articles sql injection

Inserito da Angelo Barbosa | Ott 3, 2025 | CVE

A vulnerability labeled as critical has been found in MyClub 0.5. Affected by this issue is some unknown functionality of the file /articles of the component GET Request Handler. The manipulation of the argument Content/GroupName/PersonName/lastUpdate/pool/title results in sql injection.

This vulnerability is known as CVE-2025-57423. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-57423 | MyClub 0.5 GET Request /articles sql injection

Post correlati

CVE-2025-9406 | xuhuisheng lemon up to 1.13.0 CmsArticleController.java uploadImage Upload unrestricted upload (Issue 212)

CVE-2024-35701 | PropertyHive Plugin up to 2.0.13 on WordPress cross site scripting

CVE-2025-53818 | Sunwood-ai-labs github-kanban-mcp-server 0.3.0/0.4.0 add_comment os command injection

CVE-2024-45096 | IBM Aspera Faspex up to 5.0.9 exposure of information through directory listing