CVE-2025-25222 | LuxSoft LuxCal Web Calendar retrieve.php sql injection

Inserito da Angelo Barbosa | Feb 18, 2025 | CVE

A vulnerability was found in LuxSoft LuxCal Web Calendar and classified as critical. This issue affects some unknown processing of the file retrieve.php. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2025-25222. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-25222 | LuxSoft LuxCal Web Calendar retrieve.php sql injection

Post correlati

CVE-2024-20125 | MediaTek MT8798 Vdec out-of-bounds write (MSV-1728 / ALPS09046782)

CVE-2024-13292 | Drupal Tooltip up to 1.1.1 cross site scripting

CVE-2024-2575 | SourceCodester Employee Task Management System 1.0 /task-details.php task_id authorization

CVE-2023-50775 | Deployment Dashboard Plugin up to 1.0.10 on Jenkins Job cross-site request forgery