2 matches found
CVE-2025-8123 deerwms deer-wms-2 edit sql injection
A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical. Affected is an unknown function of the file /system/dept/edit. The manipulation of the argument ancestors leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-8123
CVE-2025-8123 affects deerwms deer-wms-2 up to 3.3 . A SQL injection flaw exists in an unknown function of the API endpoint at /system/dept/edit , caused by manipulation of the ancestors parameter. It can be exploited remotely and, per sources, the exploit has been publicly disclosed. Multiple co...