CVE-2025-40624 | TCMAN GIM 11 updatePassword User/email sql injection

Inserito da Angelo Barbosa | Mag 6, 2025 | CVE

A vulnerability classified as critical was found in TCMAN GIM 11. Affected by this vulnerability is the function updatePassword. The manipulation of the argument User/email leads to sql injection.

This vulnerability is known as CVE-2025-40624. The attack can be launched remotely. There is no exploit available.

CVE-2025-40624 | TCMAN GIM 11 updatePassword User/email sql injection

Post correlati

CVE-2024-55416 | DevDojo Voyager up to 1.8.0 /admin/compass cross site scripting

CVE-2024-33645 | Eftakhairul Islam & Sirajus Salayhin Easy Set Favicon Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-52534 | Dell ECS up to 3.8.1.2 authentication replay (dsa-2024-483)

CVE-2024-0719 | Tabs Shortcode and Widget Plugin up to 1.17 on WordPress cross site scripting