CVE-2025-6277

🗓️ 19 Jun 2025 20:29:32Reported by VulDBType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 18 Views🌐 WEB

Critical SQL injection vulnerability in Brilliance Golden Link affects custTakeInfoPage.htm file.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-6277	19 Jun 202520:44	–	circl
CNNVD	Brilliance Golden Link Secondary System 注入漏洞	19 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-6277 Brilliance Golden Link Secondary System custTakeInfoPage.htm sql injection	19 Jun 202520:29	–	cvelist
EUVD	EUVD-2025-18935	3 Oct 202520:07	–	euvd
NVD	CVE-2025-6277	19 Jun 202521:15	–	nvd
OSV	CVE-2025-6277	19 Jun 202521:15	–	osv
Positive Technologies	PT-2025-26239 · Unknown · Brilliance Golden Link Secondary System	19 Jun 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-6277	23 Jun 202508:41	–	redhatcve
Vulnrichment	CVE-2025-6277 Brilliance Golden Link Secondary System custTakeInfoPage.htm sql injection	19 Jun 202520:29	–	vulnrichment

NVD

Vulners

Node

brilliance golden_link_secondary_systemRange≤2025-06-09

[
  {
    "vendor": "Brilliance",
    "product": "Golden Link Secondary System",
    "versions": [
      {
        "version": "20250609",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/eeeeeekkkkkkkk/POC/blob/main/%E9%BB%84%E9%87%91%E9%80%9A%E4%BA%8C%E7%BA%A7%E7%B3%BB%E7%BB%9F%E4%B8%89%E4%BB%A3%E7%AE%A1%E7%90%86%E7%AB%AF%E7%B3%BB%E7%BB%9FcustTakeInfoPage%E6%8E%A5%E5%8F%A3%E5%AD%98%E5%9C%A8SQL%E6%B3%A8%E5%85%A5.md
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
custTradeName	query param	/storagework/custTakeInfoPage.htm	SQL injection via manipulation of custTradeName parameter on the vulnerable page	CWE-74, CWE-89

17 Jun 2026 10:01Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.3 - 9.8

CVSS 45.3

CVSS 26.5

CVSS 36.3

EPSS0.0039

SSVC

vulnerability sql injection brilliance golden link