3 matches found
CVE-2025-43948
creationtimestamp| type| source ---|---|--- 2025-04-22 21:04:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12976 2025-04-22 21:09:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lngln2qcq52y 2025-04-22 22:35:23+00:00| seen|...
CVE-2025-43948
CVE-2025-43948 affects Codemers KLIMS 1.6.DEV, where an input value for parameters/qualifiers can carry Python code that is executed on the server side, enabling remote code execution. Documents confirm the issue is due to Python code injection in KLIMS 1.6.DEV and describe potential server-side ...
CVE-2025-43948
Codemers KLIMS 1.6.DEV allows Python code injection. A user can provide Python code as an input value for a parameter or qualifier such as for sorting, which will get executed on the server side...