EUVD-2025-24088

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Tianti up to 2.3 remote csv injection via exportOrder in tianti save; pub disc; vendor unresponsive.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-8808	10 Aug 202515:11	–	circl
CNNVD	tianti 安全漏洞	10 Aug 202500:00	–	cnnvd
CVE	CVE-2025-8808	10 Aug 202512:02	–	cve
Cvelist	CVE-2025-8808 xujeff tianti 天梯 com.jeff.tianti.controller save exportOrder csv injection	10 Aug 202512:02	–	cvelist
NVD	CVE-2025-8808	10 Aug 202512:15	–	nvd
Positive Technologies	PT-2025-32482 · Unknown · Xujeff Tianti 天梯	10 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8808	12 Aug 202512:29	–	redhatcve
Vulnrichment	CVE-2025-8808 xujeff tianti 天梯 com.jeff.tianti.controller save exportOrder csv injection	10 Aug 202512:02	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "5b523ef1-f201-38c9-8104-775a405c0dd0",
        "vendor": {
          "name": "xujeff"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "9d3d890b-da70-328f-8576-0ffa34cc29fc",
        "product": {
          "name": "tianti 天梯"
        },
        "product_version": "2.2"
      },
      {
        "id": "c245dadc-23dd-30f1-b445-dde848245679",
        "product": {
          "name": "tianti 天梯"
        },
        "product_version": "2.1"
      },
      {
        "id": "ea5bd6d1-b0f8-3355-95d0-7833314f2824",
        "product": {
          "name": "tianti 天梯"
        },
        "product_version": "2.0"
      },
      {
        "id": "f584c75a-78f7-3227-b0e9-3da8e30c71e8",
        "product": {
          "name": "tianti 天梯"
        },
        "product_version": "2.3"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/N1n3b9S/cve/issues/16

03 Oct 2025 20:07Current

4.9Medium risk

Vulners AI Score4.9

CVSS 45.3

CVSS 24

CVSS 3.14.3

CVSS 34.3

EPSS0.00144

SSVC