CVE-2025-11188 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Kiwire Captive Portal contains a blind SQL injection in the nas-id parameter, allowing for SQL commands to be issued and to compromise the corresponding dat…
High CVSS: 7.3

CVE-2025-11188

The Kiwire Captive Portal contains a blind SQL injection in the nas-id parameter, allowing for SQL commands to be issued and to compromise the corresponding database.
Vendor
Synchroweb
Product
Kiwire
CWE
CWE-89
Yayın Tarihi
2025-10-10 11:15:40
Güncelleme
2025-11-14 23:46:44
Source Identifier
cret@cert.org
KEV Date Added
-

Kategoriler

CWE-89 Kiwire HIGH Synchroweb 2025

Referanslar

https://www.synchroweb.com/release-notes/kiwire/security https://www.kb.cert.org/vuls/id/887923