CVE-2025-5386 | JeeWMS up to 20250504 cgformTransController.do?transEditor sql injection (IC5FNV)

Inserito da Angelo Barbosa | Mag 30, 2025 | CVE

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2025-5386. The attack may be initiated remotely. There is no exploit available.

This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

CVE-2025-5386 | JeeWMS up to 20250504 cgformTransController.do?transEditor sql injection (IC5FNV)

Post correlati

CVE-2023-7232 | Backup and Restore Plugin up to 1.45 on WordPress Log File information disclosure

CVE-2024-32836 | WP Lab WP-Lister Lite for eBay Plugin up to 3.5.11 on WordPress unrestricted upload

CVE-2024-13490 | enituretechnology LTL Freight Quotes Plugin up to 4.3.7 on WordPress edit_id/dropship_edit_id sql injection

CVE-2024-49765 | Discourse exposure of private personal information to an unauthorized actor (GHSA-v8rf-pvgm-xxf2)