CVE-2025-1841 | ESAFENET CDG 5.6.3.154.205 ClientSortLog.jsp startDate/endDate sql injection

Inserito da Angelo Barbosa | Mar 2, 2025 | CVE

A vulnerability classified as critical has been found in ESAFENET CDG 5.6.3.154.205. This affects an unknown part of the file /CDGServer3/logManagement/ClientSortLog.jsp. The manipulation of the argument startDate/endDate leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-1841. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-1841 | ESAFENET CDG 5.6.3.154.205 ClientSortLog.jsp startDate/endDate sql injection

Post correlati

CVE-2022-49073 | Linux Kernel up to 5.17.2 on OpenWrt sata_dwc_dma_xfer_complete tag null pointer dereference (ID 9505)

CVE-2023-5253 | Nozomi Networks Guardian/CMC prior 23.3.0 missing authentication

CVE-2023-3289 | easyappointments up to 1.4.x /services authorization

CVE-2024-33690 | Jegstudio Financio Plugin up to 1.1.3 on WordPress cross-site request forgery