CVE-2025-26200 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SQL injection in SLIMS v.9.6.1 allows a remote attacker to escalate privileges via the month parameter in the visitor_report_day.php component.
High CVSS: 7.2

CVE-2025-26200

SQL injection in SLIMS v.9.6.1 allows a remote attacker to escalate privileges via the month parameter in the visitor_report_day.php component.
Vendor
Slims
Product
Senayan Library Management System
CWE
CWE-89
Yayın Tarihi
2025-02-24 17:15:14
Güncelleme
2025-05-01 16:52:41
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 Senayan Library Management System HIGH Slims 2025

Referanslar

https://github.com/slims/slims9_bulian/issues/269 https://mebroccoli.blogspot.com/2025/02/cve2.html