CVE-2025-56407 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/a…
High CVSS: 8.8

CVE-2025-56407

A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/mysql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Vendor
Utcms Project
Product
Utcms
CWE
CWE-89
Yayın Tarihi
2025-09-10 14:15:39
Güncelleme
2025-10-06 17:16:11
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-89 Utcms HIGH Utcms Project 2025

Referanslar

https://github.com/August829/CVEP/issues/4 https://github.com/August829/Yu/blob/main/20250810_1.md