Reddit NetSec

CVE Database V5

AlienVault OTX General

Exploit-DB RSS Feed

Reddit InfoSec News

ThreatFox MISP Feed

CIRCL OSINT Feed

AlienVault OTX Vulnerabilities

AlienVault OTX Malware

A SQL injection vulnerability exists in Fanwei e-cology 8.0 via the getdata.jsp endpoint. The application directly passes unsanitized user input from the sql parameter into a database query within the getSelectAllIds(sql, type) method, reachable through the cmd=getSelectAllId workflow in the AjaxManager. This allows unauthenticated attackers to execute arbitrary SQL queries, potentially exposing sensitive data such as administrator password hashes.

CVE-2025-34038 is a high-severity SQL injection vulnerability affecting Shanghai Fanwei Network Technology's e-cology product, version 8.0 and prior. The vulnerability resides in the getdata.jsp endpoint, specifically within the getSelectAllIds(sql, type) method. This method is invoked through the cmd=getSelectAllId workflow in the AjaxManager component. The root cause is the direct incorporation of unsanitized user input from the 'sql' parameter into a database query without proper neutralization of special SQL elements. This lack of input validation allows unauthenticated attackers to inject arbitrary SQL commands. Consequently, attackers can manipulate backend database queries to extract sensitive information, including administrator password hashes, or potentially alter or delete data. The vulnerability requires no authentication or user interaction, making it trivially exploitable remotely over the network. The CVSS v4.0 base score is 8.7, reflecting its high impact on confidentiality and ease of exploitation. No known public exploits have been reported yet, and no patches have been linked at the time of publication. The vulnerability is categorized under CWE-89, which covers improper neutralization of special elements in SQL commands, a classic injection flaw that can lead to severe data breaches and system compromise if exploited.

Detailed information about CVE-2025-34038: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Shanghai Fanwei Networ

CVE-2025-34038: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Shanghai Fanwei Network Technology e-cology - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-34038: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Shanghai Fanwei Network Technology e-cology

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Iqonic Design WP Roadmap allows SQL Injection. This issue affects WP Roadmap: from n/a through 2.1.3.

CVE-2025-52822 is a high-severity SQL Injection vulnerability affecting the WP Roadmap plugin developed by Iqonic Design, specifically versions up to 2.1.3. The vulnerability stems from improper neutralization of special elements in SQL commands (CWE-89), allowing an attacker with at least low privileges (PR:L) to inject malicious SQL code remotely (AV:N) without requiring user interaction (UI:N). The vulnerability impacts the confidentiality of the database by enabling unauthorized data access (C:H), while the integrity remains unaffected (I:N), and availability impact is low (A:L). The scope is changed (S:C), indicating that exploitation can affect resources beyond the initially vulnerable component, potentially impacting the entire system or other connected components. The plugin is used within WordPress environments to create and manage roadmaps, which are often integral to project management and product planning websites. Exploitation could allow attackers to extract sensitive information from the underlying database, such as user credentials, business data, or configuration details, which could then be leveraged for further attacks or data breaches. Although no known exploits are currently reported in the wild, the low attack complexity and network accessibility make this vulnerability a significant risk. The absence of an official patch at the time of publication increases exposure, necessitating immediate attention from administrators using this plugin. Given the nature of WordPress plugins and their widespread use, the vulnerability could be exploited by automated scanning tools and opportunistic attackers targeting vulnerable installations.

Detailed information about CVE-2025-52822: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Iqonic Design WP Roadm

CVE-2025-52822: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Iqonic Design WP Roadmap - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-52822: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Iqonic Design WP Roadmap

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in thanhtungtnt Video List Manager allows SQL Injection. This issue affects Video List Manager: from n/a through 1.7.

CVE-2025-52821 is a high-severity SQL Injection vulnerability (CWE-89) found in the thanhtungtnt Video List Manager software, affecting all versions up to and including 1.7. The vulnerability arises from improper neutralization of special elements in SQL commands, allowing an attacker with low privileges (PR:L) to inject malicious SQL code remotely (AV:N) without requiring user interaction (UI:N). The vulnerability impacts confidentiality (C:H) with a limited impact on availability (A:L) and no impact on integrity (I:N). The scope is changed (S:C), indicating that the vulnerability can affect resources beyond the initially vulnerable component. Exploitation could allow an attacker to extract sensitive data from the backend database, potentially exposing user information or internal application data. Although no known exploits are currently in the wild, the ease of exploitation combined with the high CVSS score (8.5) suggests that this vulnerability poses a significant risk. The lack of available patches at the time of publication increases the urgency for mitigation. The vulnerability is typical of SQL Injection flaws where input validation and parameterized queries are insufficient or absent, enabling attackers to manipulate SQL queries executed by the application.

Detailed information about CVE-2025-52821: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in thanhtungtnt Video Lis

CVE-2025-52821: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in thanhtungtnt Video List Manager - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-52821: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in thanhtungtnt Video List Manager

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.0.1, contains an improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to denial of service, information disclosure, and information tampering.

CVE-2025-32753 is a medium-severity SQL injection vulnerability affecting Dell PowerScale OneFS versions 9.5.0.0 through 9.10.0.1. The vulnerability arises due to improper neutralization of special elements in SQL commands, classified under CWE-89. This flaw allows a low-privileged attacker with local access to inject malicious SQL code into the system. Exploitation does not require user interaction but does require the attacker to have local access and low privileges on the affected system. Successful exploitation can lead to multiple adverse outcomes, including denial of service (DoS), unauthorized disclosure of sensitive information, and tampering with data integrity. The CVSS v3.1 base score is 5.3, reflecting a medium severity level, with attack vector local (AV:L), low attack complexity (AC:L), low privileges required (PR:L), no user interaction (UI:N), unchanged scope (S:U), and impacts on confidentiality (C:L), integrity (I:L), and availability (A:L). The vulnerability is present in a critical storage platform widely used in enterprise environments for scalable and distributed file storage. No known exploits are currently reported in the wild, and no official patches have been linked yet. The vulnerability was reserved in April 2025 and published in June 2025, indicating recent discovery and disclosure. The lack of patch links suggests that mitigation may currently rely on workarounds or access control measures until official fixes are released.

Detailed information about CVE-2025-32753: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Dell PowerScale OneFS

CVE-2025-32753: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Dell PowerScale OneFS - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-32753: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Dell PowerScale OneFS

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yirmibes Software MY ERP allows SQL Injection.This issue affects MY ERP: before 1.170.

CVE-2025-4738 is a critical SQL Injection vulnerability (CWE-89) found in Yirmibes Software's MY ERP product, affecting versions prior to 1.170. The vulnerability arises due to improper neutralization of special elements in SQL commands, allowing an attacker to inject malicious SQL code. This flaw enables remote attackers to execute arbitrary SQL queries without requiring authentication or user interaction, as indicated by the CVSS vector (AV:N/AC:L/PR:N/UI:N). The vulnerability impacts confidentiality, integrity, and availability of the affected systems, with potential for data exfiltration, unauthorized data modification, and disruption of ERP services. MY ERP is an enterprise resource planning system, which typically manages critical business functions such as finance, supply chain, and human resources. Exploitation could lead to severe operational and financial damage. Although no known exploits are currently observed in the wild, the high CVSS score (9.8) and ease of exploitation make this a significant threat that demands immediate attention. The lack of available patches at the time of publication increases risk exposure for organizations using affected versions.

Detailed information about CVE-2025-4738: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Yirmibes Software MY ER

CVE-2025-4738: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Yirmibes Software MY ERP - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-4738: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Yirmibes Software MY ERP

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, a SQL Injection vulnerability was identified in the id parameter of the /WeGIA/controle/control.php endpoint. This vulnerability allows attacker to manipulate SQL queries and access sensitive database information, such as table names and sensitive data. This issue has been patched in version 3.4.2.

CVE-2025-52474 is a high-severity SQL Injection vulnerability affecting versions of the WeGIA web management software prior to 3.4.2. WeGIA is a web-based management platform designed for charitable institutions, developed by LabRedesCefetRJ. The vulnerability exists specifically in the 'id' parameter of the /WeGIA/controle/control.php endpoint. Due to improper neutralization of special elements in SQL commands (CWE-89), an attacker can manipulate the SQL query executed by the backend database. This manipulation allows unauthorized access to sensitive database information, including table names and potentially confidential data stored within the database. The vulnerability does not require user interaction or authentication, making it remotely exploitable over the network with low attack complexity. The CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N) indicates that the attack can be launched remotely without user interaction, requires low privileges (likely a low-privileged authenticated user), and has a high impact on confidentiality and system security. The vulnerability has been patched in WeGIA version 3.4.2, and no known exploits are currently reported in the wild. However, the presence of such a vulnerability in software used by charitable institutions poses a significant risk of data leakage and unauthorized data manipulation if left unpatched.

Detailed information about CVE-2025-52474: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in LabRedesCefetRJ WeGIA

CVE-2025-52474: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in LabRedesCefetRJ WeGIA - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-52474: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in LabRedesCefetRJ WeGIA

A post-auth SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to escalate privileges on affected installations. This is similar to, but not identical to CVE-2025-49215.

Please note: an attacker must first obtain the ability to execute low-privileged code on the target system to exploit this vulnerability.

CVE-2025-49218 is a high-severity SQL injection vulnerability affecting version 6.0 of the Trend Micro Endpoint Encryption Policy Server. This vulnerability falls under CWE-89, indicating improper neutralization of special elements used in an SQL command, which allows an attacker to manipulate backend database queries. The vulnerability is post-authentication, meaning an attacker must first gain low-privileged code execution on the target system before exploiting the flaw. Once exploited, the attacker can escalate privileges by injecting malicious SQL commands that alter the behavior of the Policy Server's database interactions. The vulnerability impacts confidentiality, integrity, and availability: it can lead to unauthorized data disclosure (confidentiality), unauthorized modification of data or system settings (integrity), and potential disruption or denial of service (availability). The CVSS 3.1 base score of 7.7 reflects a high severity, with attack vector local (AV:L), high attack complexity (AC:H), requiring low privileges (PR:L), no user interaction (UI:N), and a scope change (S:C), indicating that the vulnerability can affect resources beyond the initially compromised component. The similarity to CVE-2025-49215 suggests a pattern of SQL injection issues in this product line, but this particular vulnerability is distinct. No known exploits are currently reported in the wild, and no patches have been linked yet, which suggests that organizations should prioritize monitoring and mitigation efforts. The requirement for prior low-privileged code execution means that this vulnerability is likely part of a multi-stage attack chain, where initial access is gained through other means, followed by privilege escalation via this SQL injection.

Detailed information about CVE-2025-49218: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server affecting Trend Micro, Inc. 

CVE-2025-49218: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-49218: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server

A SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to escalate privileges on affected installations. 

Please note: an attacker must first obtain the ability to execute low-privileged code on the target system to exploit this vulnerability.

CVE-2025-49211 is a high-severity SQL injection vulnerability identified in Trend Micro Endpoint Encryption Policy Server version 6.0. This vulnerability stems from improper sanitization of user-supplied input in SQL queries, classified under CWE-89. Exploitation of this flaw allows an attacker to manipulate backend database queries, potentially escalating privileges within the affected system. However, exploitation requires the attacker to have already gained the ability to execute low-privileged code on the target system, which means initial access or foothold is a prerequisite. Once exploited, the attacker can alter database commands to elevate their privileges, compromising the integrity and availability of the encryption policy server. The vulnerability has a CVSS 3.1 base score of 7.7, reflecting a high severity with a complex attack vector (local access with high attack complexity), requiring low privileges but no user interaction. The scope is changed, indicating that the impact extends beyond the vulnerable component, affecting confidentiality (low impact), integrity (high impact), and availability (high impact). No known exploits are currently reported in the wild, and no official patches have been released yet. The Trend Micro Endpoint Encryption Policy Server is a critical component used to manage encryption policies across enterprise endpoints, making this vulnerability particularly concerning for organizations relying on this product for data protection and compliance.

Detailed information about CVE-2025-49211: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server affecting Trend Micro, Inc. 

CVE-2025-49211: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-49211: CWE-89: SQL Injection in Trend Micro, Inc. Trend Micro Endpoint Encryption Policy Server

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Anh Tran Slim SEO allows SQL Injection. This issue affects Slim SEO: from n/a through 4.5.4.

CVE-2025-49854 is a high-severity SQL Injection vulnerability affecting the Anh Tran Slim SEO plugin, versions up to and including 4.5.4. The vulnerability arises from improper neutralization of special elements in SQL commands (CWE-89), allowing an attacker with authenticated access (PR:H) to inject malicious SQL code. The CVSS 3.1 score is 7.6, reflecting a network attack vector (AV:N), low attack complexity (AC:L), no user interaction required (UI:N), and a scope change (S:C) where the vulnerability affects resources beyond the initially vulnerable component. The impact primarily compromises confidentiality (C:H) by enabling unauthorized reading of sensitive data, with limited impact on availability (A:L) and no impact on integrity (I:N). Exploitation requires authenticated privileges, which limits exposure to users with some level of access to the WordPress environment where Slim SEO is installed. Although no known exploits are currently reported in the wild, the vulnerability poses a significant risk due to the potential for data leakage and the widespread use of Slim SEO in WordPress sites. The vulnerability is particularly critical because it can lead to unauthorized disclosure of database contents, which may include sensitive SEO configurations, user data, or other confidential information stored in the database. The absence of available patches at the time of publication increases the urgency for mitigation and monitoring.

Detailed information about CVE-2025-49854: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Anh Tran Slim SEO affe

CVE-2025-49854: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Anh Tran Slim SEO - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-49854: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Anh Tran Slim SEO

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adrian Ladó PostaPanduri allows SQL Injection. This issue affects PostaPanduri: from n/a through 2.1.3.

CVE-2025-49452 is a critical SQL Injection vulnerability (CWE-89) affecting the PostaPanduri product developed by Adrian Ladó, specifically versions up to 2.1.3. The vulnerability arises due to improper neutralization of special elements in SQL commands, allowing an attacker to inject malicious SQL code. According to the CVSS 3.1 vector (9.3), this vulnerability can be exploited remotely over the network without any authentication or user interaction (AV:N/AC:L/PR:N/UI:N). The scope is changed (S:C), indicating that exploitation can affect resources beyond the initially vulnerable component. The impact on confidentiality is high (C:H), while integrity is not impacted (I:N), and availability impact is low (A:L). This suggests that an attacker can extract sensitive data from the backend database but cannot modify or delete data or cause significant denial of service. No known exploits are currently reported in the wild, and no patches have been linked yet. The vulnerability is present in the way PostaPanduri constructs SQL queries, failing to properly sanitize or parameterize user inputs, which enables attackers to craft malicious payloads that alter the intended SQL logic. This can lead to unauthorized disclosure of sensitive information stored in the database, such as user credentials, personal data, or internal configuration details. Given the critical severity and ease of exploitation, this vulnerability represents a significant risk to any organization using affected versions of PostaPanduri, especially if the application is exposed to the internet or untrusted networks.

Detailed information about CVE-2025-49452: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Adrian Ladó PostaPandu

CVE-2025-49452: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Adrian Ladó PostaPanduri - Live Threat Intelligence - Threat Radar | OffSeq.com

Title	Severity	Type	Source	Date

Threats Tagged 'cwe-89'

Filter Threats

Threats Tagged 'cwe-89'

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility