2 matches found
CVE-2025-8125 deerwms deer-wms-2 allocatedList sql injection
A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/role/authUser/allocatedList. The manipulation of the argument paramsdataScope leads to sql injection. The attack may be launched...
CVE-2025-8125
CVE-2025-8125 affects deerwms deer-wms-2 up to version 3.3. The vulnerability is an SQL injection in the file /system/role/authUser/allocatedList caused by improper handling of the params[dataScope] parameter. It can be exploited remotely, and the exploit has been disclosed publicly. Multiple sou...