2 matches found
CVE-2025-55885
SQL Injection vulnerability in Alpes Recherche et Developpement ARD GEC en Lign before v.2025-04-23 allows a remote attacker to escalate privileges via the GET parameters in index.php...
CVE-2025-55885
CVE-2025-55885 is a SQL injection in Alpes Recherche et Developpement ARD GEC en Lign prior to 2025-04-23 that lets a remote attacker escalate privileges by manipulating GET parameters in index.php. Root cause: improper handling of GET inputs in the web app. Impact: privilege escalation with Low ...