CVE-2025-14245

🗓️ 08 Dec 2025 12:32:07Reported by VulDBType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 10 Views

CVE-2025-14245 in IdeaCMS up to 1.8 allows SQL injection via whereRaw in Coupon.php.

Reporter	Title	Published	Views	Family All 8
CNNVD	IdeaCMS SQL注入漏洞	8 Dec 202500:00	–	cnnvd
Cvelist	CVE-2025-14245 IdeaCMS Coupon.php whereRaw sql injection	8 Dec 202512:32	–	cvelist
EUVD	EUVD-2025-201709	8 Dec 202512:32	–	euvd
NVD	CVE-2025-14245	8 Dec 202513:15	–	nvd
OSV	CVE-2025-14245	8 Dec 202513:15	–	osv
Positive Technologies	PT-2025-49552	8 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-14245	9 Dec 202513:31	–	redhatcve
Vulnrichment	CVE-2025-14245 IdeaCMS Coupon.php whereRaw sql injection	8 Dec 202512:32	–	vulnrichment

NVD

Vulners

Node

ideacms ideacmsRange≤1.8

[
  {
    "vendor": "n/a",
    "product": "IdeaCMS",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      },
      {
        "version": "1.7",
        "status": "affected"
      },
      {
        "version": "1.8",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/rassec2/dbcve/issues/17
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

29 Apr 2026 01:00Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.3 - 9.8

CVSS 46.9

CVSS 27.5

CVSS 37.3

EPSS0.00044

SSVC