CVE-2025-0345

Medium CVSS: 5.3

A vulnerability was found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this issue is the function listData of the file /sys/menu/listData. The manipulation of the argument order leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Vendor

Leiyuxi

Product

Cy-fast

CWE

CWE-74

Yayın Tarihi

2025-01-09 09:15:09

Güncelleme

2025-08-22 16:28:28

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Cy-fast MEDIUM Leiyuxi 2025

Referanslar

https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli4.md https://vuldb.com/?ctiid.290858 https://vuldb.com/?id.290858 https://vuldb.com/?submit.475748

Benzer Kayıtlar

Medium

CVE-2025-0344

A vulnerability has been found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this vulnerability is the…

Medium

CVE-2025-0334

A vulnerability has been found in leiyuxi cy-fast 1.0 and classified as critical. Affected by this vulnerability is the…

Medium

CVE-2025-0333

A vulnerability, which was classified as critical, was found in leiyuxi cy-fast 1.0. Affected is the function listData o…