CVE-2025-0405

CVSS 2.0 Score 6.5 of 10 (medium)

Details

Published Jan 13, 2025
CWE ID 89
CWE ID 74

Summary

CVE-2025-0405 is a critical vulnerability affecting liujianview gymxmjpa version 1.0. The issue lies in the GoodsDaoImpl function of GoodsController.java. Manipulation of the goodsName argument can lead to SQL injection, allowing remote attackers to exploit the vulnerability. The exploit for this issue has been made public, increasing the risk for potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share