3 matches found
CVE-2025-8127
A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. This vulnerability affects unknown code of the file /system/user/list. The manipulation of the argument paramsdataScope leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-8127 deerwms deer-wms-2 list sql injection
A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. This vulnerability affects unknown code of the file /system/user/list. The manipulation of the argument paramsdataScope leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-8127
CVE-2025-8127 affects deerwms deer-wms-2 up to version 3.3. The vulnerability is located in /system/user/list, where manipulating the params[dataScope] input leads to SQL injection. Exploitation can be performed remotely and public proofs-of-concept exist. Several connected sources confirm the is...