CVE-2025-46052 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An error-based SQL Injection (SQLi) vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL command and extract sensitive data by injecting a…
Critical CVSS: 9.8

CVE-2025-46052

An error-based SQL Injection (SQLi) vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL command and extract sensitive data by injecting a crafted payload into the DEL form field in a POST request to /StockCounts.php
Vendor
Weberp
Product
Weberp
CWE
CWE-89
Yayın Tarihi
2025-05-15 14:15:30
Güncelleme
2025-06-12 13:19:06
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 Weberp CRITICAL Weberp 2025

Referanslar

https://github.com/johnchd/CVEs/blob/main/WebERP/CVE-2025-46052%20-%20SQLi.md https://www.weberp.org/ https://github.com/johnchd/CVEs/blob/main/WebERP/CVE-2025-46052%20-%20SQLi.md