CVE-2025-5386 | JeeWMS up to 20250504 cgformTransController.do?transEditor sql injection (IC5FNV)

Inserito da Angelo Barbosa | Mag 30, 2025 | CVE

A vulnerability was found in JeeWMS up to 20250504. It has been rated as critical. This issue affects the function transEditor of the file /cgformTransController.do?transEditor. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2025-5386. The attack may be initiated remotely. There is no exploit available.

This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

CVE-2025-5386 | JeeWMS up to 20250504 cgformTransController.do?transEditor sql injection (IC5FNV)

Post correlati

CVE-2024-43990 | StylemixThemes Masterstudy LMS Starter Plugin up to 1.1.8 on WordPress log file

CVE-2024-1263 | Juanpao JPShop up to 1.5.02 API PosterController.php actionUpdate pic_url unrestricted upload

CVE-2025-1304 | NewsBlogger Theme up to 0.2.5.1 on WordPress newsblogger_install_and_activate_plugin unrestricted upload

CVE-2024-27298 | parse-server up to 6.4.x/7.0.0-alpha.19 on Node.js PostgreSQL sql injection (GHSA-6927-3vr9-fxf2)