3 matches found
CVE-2025-3369 xxyopen Novel-Plus list sql injection
A vulnerability was found in xxyopen Novel-Plus 5.1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /novel/friendLink/list. The manipulation of the argument sort leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2025-3369 xxyopen Novel-Plus list sql injection
A vulnerability was found in xxyopen Novel-Plus 5.1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /novel/friendLink/list. The manipulation of the argument sort leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2025-3369
CVE-2025-3369 affects xxyopen Novel-Plus 5.1.0. A vulnerability exists in the file /novel/friendLink/list where manipulating the sort argument leads to SQL injection. The issue may be exploited remotely and has been publicly disclosed. Connected sources consistently describe this as a remote SQL ...