CVE-2025-0345 | leiyuxi cy-fast 1.0 /sys/menu/listData order sql injection

Inserito da Angelo Barbosa | Gen 8, 2025 | CVE

A vulnerability was found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this issue is the function listData of the file /sys/menu/listData. The manipulation of the argument order leads to sql injection.

This vulnerability is handled as CVE-2025-0345. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-0345 | leiyuxi cy-fast 1.0 /sys/menu/listData order sql injection

Post correlati

CVE-2024-4950 | Google Chrome prior 125.0.6422.60 Downloads ui layer (ID 400654)

CVE-2024-37476 | Automattic Newspack Campaigns Plugin up to 2.31.1 on WordPress cross site scripting

CVE-2024-1844 | RevivePress Plugin up to 1.5.6 on WordPress authorization

CVE-2024-34670 | Samsung Sound Assistant up to 6.1.0.8 implicit intent