CVE-2025-5569 | IdeaCMS up to 1.7 getList.html Article/Goods Field sql injection (ICBVWE)

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in IdeaCMS up to 1.7 and classified as critical. This issue affects the function Article/Goods of the file /api/v1.index.article/getList.html. The manipulation of the argument Field leads to sql injection.

The identification of this vulnerability is CVE-2025-5569. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5569 | IdeaCMS up to 1.7 getList.html Article/Goods Field sql injection (ICBVWE)

Post correlati

CVE-2024-36485 | Zoho ManageEngine ADAudit Plus up to 8121 Technician Reports Option sql injection

CVE-2024-52677 | HkCms up to 2.3.2.240702 Upload.php getFileName unrestricted upload

CVE-2024-42583 | Warehouse Inventory System 2.0 delete_user.php cross-site request forgery

CVE-2024-39356 | Intel PROSet/Wireless WiFi/Killer WiFi up to 23.79 on Windows null pointer dereference (intel-sa-01224)