CVE-2025-0344

Medium CVSS: 5.3

A vulnerability has been found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this vulnerability is the function listData of the file /commpara/listData. The manipulation of the argument order leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Vendor

Leiyuxi

Product

Cy-fast

CWE

CWE-74

Yayın Tarihi

2025-01-09 08:15:30

Güncelleme

2025-08-22 16:32:49

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Cy-fast MEDIUM Leiyuxi 2025

Referanslar

https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli3.md https://vuldb.com/?ctiid.290857 https://vuldb.com/?id.290857 https://vuldb.com/?submit.475747

Benzer Kayıtlar

Medium

CVE-2025-0345

A vulnerability was found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this issue is the function list…

Medium

CVE-2025-0334

A vulnerability has been found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this vulnerability is the…

Medium

CVE-2025-0333

A vulnerability, which was classified as critical, was found in leiyuxi cy-fast 1.0. Affected is the function listData o…