← voltar
CVE-2025-57529

CVE-2025-57529

CVSS 9.8 CRITICALEPSS 0.6%CWE-89
YouDataSum CPAS Audit Management System <=v4.9 is vulnerable to SQL Injection in /cpasList/findArchiveReportByDah due to insufficient input validation. This allows remote unauthenticated attackers to execute arbitrary SQL commands via crafted input to the parameter. Successful exploitation could lead to unauthorized data access
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/songqb-xx/CPAS-bughttps://github.com/songqb-xx/CVE-2025-57529/blob/main/README.md