CVE-2025-25354 | Record System 1.0 POST Request Parameter sql injection

Posted by Angelo Barbosa | Feb 13, 2025 | CVE

A vulnerability, which was classified as critical, was found in Record System 1.0. Affected is an unknown function of the component POST Request Parameter Handler. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2025-25354. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-25354 | Record System 1.0 POST Request Parameter sql injection

Related Posts

CVE-2024-21917 | Rockwell Automation FactoryTalk Service Platform up to 6.3 FTSP Service signature verification (icsa-24-030-06)

CVE-2024-1577 | Jan Syski MegaBIP code injection

CVE-2024-29466 | lsgwr Spring Boot Online Exam 0.9 FileTransUtil.java path traversal

CVE-2023-52131 | WP Zinc Page Generator Plugin up to 1.7.1 on WordPress sql injection