CVE-2025-0792 | ESAFENET CDG V5 /sdTodoDetail.jsp flowId sql injection
CVE-2025-0792 | ESAFENET CDG V5 /sdTodoDetail.jsp flowId sql injection
A vulnerability, which was classified as critical, was found in ESAFENET CDG V5. Affected is an unknown function of the file /sdTodoDetail.jsp. The manipulation of the argument flowId leads to sql injection. This vulnerability is traded as CVE-2025-0792. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way. The vendor was contacted early about this disclosure but did not respond in any way.Son Yazılar
- CVE-2024-57401 | Uniclare Student Portal up to 2 Forgot Password sql injection
- CVE-2023-51330 | PHPJabbers Cinema Booking System 1.0 Now Showing Menu date cross site scripting
- CVE-2023-51318 | PHPJabbers Bus Reservation System 1.1 title/name cross site scripting
- CVE-2023-51325 | PHPJabbers Shared Asset Booking System 1.0 title/name cross site scripting
- CVE-2023-51312 | PHPJabbers Restaurant Booking System 3.0 Schedule Section date cross site scripting
- CVE-2023-51306 | PHPJabbers Event Ticketing System 1.0 name/title cross site scripting
- CVE-2023-51327 | PHPJabbers Cleaning Business Software 1.0 Forgot Password denial of service
- CVE-2023-51332 | PHPJabbers Meeting Room Booking System 1.0 Forgot Password denial of service
- CVE-2023-51315 | PHPJabbers Restaurant Booking System 3.0 cross site scripting
- CVE-2025-0161 | IBM Security Verify Access up to 10.0.0.9/11.0.0.0 code injection