CVE-2025-0405
CVSS 2.0 Score 6.5 of 10 (medium)
Details
Published Jan 13, 2025
CWE ID 89
CWE ID 74
Summary
CVE-2025-0405 is a critical vulnerability affecting liujianview gymxmjpa version 1.0. The issue lies in the GoodsDaoImpl function of GoodsController.java. Manipulation of the goodsName argument can lead to SQL injection, allowing remote attackers to exploit the vulnerability. The exploit for this issue has been made public, increasing the risk for potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share