CVE-2025-63608 | CSZ CSZ-CMS up to 1.3.0 Form Builder View Field sql injection

Inserito da Angelo Barbosa | Ott 30, 2025 | CVE

A vulnerability, which was classified as critical, has been found in CSZ CSZ-CMS up to 1.3.0. This affects an unknown function of the component Form Builder View. The manipulation of the argument Field leads to sql injection.

This vulnerability is traded as CVE-2025-63608. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-63608 | CSZ CSZ-CMS up to 1.3.0 Form Builder View Field sql injection

Post correlati

CVE-2024-5871 | WooCommerce plugin up to 2.6.2 on WordPress Social Login code injection

CVE-2025-21393 | Microsoft SharePoint Server cross site scripting

CVE-2024-7059 | Genetec Security Center prior 5.12.2.1 externally-controlled input to select classes or code

CVE-2024-56802 | PacoVK tapir 0.9.0/0.9.1 improper authorization