Lucene search
K

5 matches found

NVD
NVD
added 2025/01/18 1:15 p.m.12 views

CVE-2025-0558

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

9.8CVSS0.00418EPSS
Exploits0References4
Circl
Circl
added 2025/01/18 1:1 p.m.10 views

CVE-2025-0558

creationtimestamp| type| source ---|---|--- 2025-01-18 13:01:52+00:00| seen| https://infosec.exchange/users/cve/statuses/113849487328744611 2025-01-18 13:15:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfzfdiotlm27 2025-01-18 13:54:37+00:00| seen|...

9.8CVSS6.5AI score0.00418EPSS
Exploits0References5
CVE
CVE
added 2025/01/18 1:0 p.m.49 views

CVE-2025-0558

CVE-2025-0558 affects TDuckCloud tduck-platform up to 4.0. The vulnerability lies in the function QueryProThemeRequest (src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java), where manipulation of the color parameter enables an SQL injection. Impact as described across sources: re...

9.8CVSS6.8AI score0.00418EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/18 1:0 p.m.11 views

CVE-2025-0558 TDuckCloud tduck-platform QueryProThemeRequest.java QueryProThemeRequest sql injection

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

6.5CVSS6.8AI score0.00418EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/01/18 1:0 p.m.18 views

CVE-2025-0558 TDuckCloud tduck-platform QueryProThemeRequest.java QueryProThemeRequest sql injection

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

6.5CVSS0.00418EPSS
Exploits0References4
Rows per page
Query Builder