CVE-2025-25877

CVSS 3.1 Score 3.8 of 10 (low)

Details

Published Feb 21, 2025

CWE ID 89

Summary

CVE-2025-25877 is a recently disclosed vulnerability that impacts ITSourcecode Simple ChatBox versions up to 1.0. The issue resides in the code of the /admin.php file, which is susceptible to SQL injection attacks. An attacker who successfully exploits this vulnerability can gain unauthorized access to sensitive data. It's essential for users of ITSourcecode Simple ChatBox to upgrade to the latest version or implement appropriate security measures to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3IIJBl
https://www.cve.org/CVERecord?id=CVE-2025-25877
https://nvd.nist.gov/vuln/detail/CVE-2025-25877

Back to Vulnerability Database

CVE-2025-25877

CVSS 3.1 Score 3.8 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations