5 matches found
EUVD-2025-25749
Malicious code in bioql PyPI...
SQL Injection
Overview Affected versions of this package are vulnerable to SQL Injection via the SelectPageList function in the LoginInforService.go file when handling the isAsc argument. An attacker can execute unauthorized SQL commands by supplying crafted input remotely. Remediation There is no fixed versio...
CVE-2025-9411
A security vulnerability has been detected in lostvip-com ruoyi-go up to 2.1. The impacted element is the function SelectPageList of the file modules/system/service/LoginInforService.go. The manipulation of the argument isAsc leads to sql injection. The attack can be initiated remotely. The explo...
CVE-2025-9411
CVE-2025-9411 affects lostvip-com ruoyi-go up to version 2.1. The vulnerability is in the SelectPageList function of modules/system/service/LoginInforService.go, where manipulation of the isAsc argument enables SQL injection. Exploitation is remote and has been publicly disclosed; multiple source...
PT-2025-34687 · Lostvip Com · Ruoyi-Go
Name of the Vulnerable Software and Affected Versions: lostvip-com ruoyi-go versions up to 2.1 Description: A security issue exists in the SelectPageList function within the modules/system/service/LoginInforService.go file. Manipulation of the isAsc argument can lead to SQL injection. This issue ...