CVE-2025-8203 | Jingmen Zeyou Large File Upload Control up to 6.3 /index.jsp ID sql injection

Inserito da Angelo Barbosa | Lug 25, 2025 | CVE

A vulnerability classified as critical has been found in Jingmen Zeyou Large File Upload Control up to 6.3. Affected is an unknown function of the file /index.jsp. The manipulation of the argument ID leads to sql injection.

This vulnerability is traded as CVE-2025-8203. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-8203 | Jingmen Zeyou Large File Upload Control up to 6.3 /index.jsp ID sql injection

Post correlati

CVE-2024-25050 | IBM i/Rational Development Studio for i 7.2/7.3/7.4/7.5 Networking/Compiler Infrastructure uncontrolled search path (XFDB-283242)

CVE-2023-47827 | NicheAddons Events Addon for Elementor Plugin up to 2.1.3 on WordPress authorization

CVE-2025-0433 | litonice13 Master Addons Plugin up to 2.0.7.1 on WordPress id cross site scripting

CVE-2023-39414 | GTKWave 3.3.115 LXT2 lxt2_rd_iter_radix integer underflow (TALOS-2023-1824)