CVE-2025-3800 WCMS AnonymousController.php sql injection

A vulnerability has been found in WCMS 11 and classified as critical. Affected by this vulnerability is an unknown functionality of the file app/controllers/AnonymousController.php. The manipulation of the argument mobilephone leads to sql injection. The attack can be launched remotely. The explo...

CVE-2025-3799 WCMS AnonymousController.php sql injection

A vulnerability, which was classified as critical, was found in WCMS 11. Affected is an unknown function of the file app/controllers/AnonymousController.php. The manipulation of the argument email/username leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-3799

CVE-2025-3799 affects WCMS 11, specifically an unknown function in file app/controllers/AnonymousController.php . The vulnerability is a SQL injection triggered by modifying the parameters email/username , exploitable remotely. Public disclosure and multiple CVE feeds corroborate remote attack po...

WCMS 注入漏洞

WCMS is a content management system CMS from the individual developers at Vedegis. An injection vulnerability exists in WCMS version 11, which stems from SQL injection due to the manipulation of the parameters email and username in the file app/controllers/AnonymousController.php...

SQL Injection Vulnerability in WCMS AnonymousController.php File

WCMS is a CMS for editors, an editor-oriented editor. A SQL injection vulnerability exists in the WCMS AnonymousController.php file. The vulnerability is due to the system failing to effectively filter user-submitted data. An attacker can exploit this vulnerability to obtain sensitive database...