CVE-2025-3267 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability, which was classified as critical, was found in qinguoyi TinyWebServer up to 1.0. This affects an unknown part of the file /http/http_conn.cpp.…
Medium CVSS: 5.3

CVE-2025-3267

A vulnerability, which was classified as critical, was found in qinguoyi TinyWebServer up to 1.0. This affects an unknown part of the file /http/http_conn.cpp. The manipulation of the argument name/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Vendor
Qinguoyi
Product
Tinywebserver
CWE
CWE-74
Yayın Tarihi
2025-04-04 20:15:18
Güncelleme
2025-04-07 18:18:41
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 Tinywebserver MEDIUM Qinguoyi 2025

Referanslar

https://magnificent-dill-351.notion.site/SQL-Injection-in-TinyWebServer-1-0-1c9c693918ed800ba172f55997565735 https://vuldb.com/?ctiid.303339 https://vuldb.com/?id.303339 https://vuldb.com/?submit.549228 https://magnificent-dill-351.notion.site/SQL-Injection-in-TinyWebServer-1-0-1c9c693918ed800ba172f55997565735