CVE-2025-46053 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A SQL Injection vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL commands and extract sensitive data by injecting a crafted payload int…
Medium CVSS: 5.1

CVE-2025-46053

A SQL Injection vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL commands and extract sensitive data by injecting a crafted payload into the ReportID and ReplaceReportID parameters within a POST request to /reportwriter/admin/ReportCreator.php
Vendor
Weberp
Product
Weberp
CWE
CWE-89
Yayın Tarihi
2025-05-15 15:16:10
Güncelleme
2025-06-12 13:12:25
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 Weberp MEDIUM Weberp 2025

Referanslar

https://github.com/johnchd/CVEs/blob/main/WebERP/CVE-2025-46053%20-%20SQLi.md https://www.weberp.org/