CVE-2025-5493 | Baison Channel Middleware Product 2.0.1 ToJsonByControlName data sql injection

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in Baison Channel Middleware Product 2.0.1 and classified as critical. Affected by this issue is some unknown functionality of the file /e3api/api/main/ToJsonByControlName. The manipulation of the argument data leads to sql injection.

This vulnerability is handled as CVE-2025-5493. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-5493 | Baison Channel Middleware Product 2.0.1 ToJsonByControlName data sql injection

Post correlati

CVE-2024-41161 | Vonets VGA-1000 up to 3.3.23.6.9 hard-coded credentials (icsa-24-214-08)

CVE-2024-3763 | Emlog Pro 2.2.10 Post Tag /admin/tag.php cross site scripting

CVE-2024-31309 | Apache Traffic Server HTTP/2 resource consumption

CVE-2024-34747 | Google Android devicemem_server.c DevmemXIntMapPages use after free