7 matches found
EUVD-2025-25722
Malicious code in bioql PyPI...
EUVD-2025-25721
Malicious code in bioql PyPI...
CVE-2025-9413
A flaw has been found in lostvip-com ruoyi-go up to 2.1. This impacts the function SelectListByPage of the file modules/system/systemrouter.go. This manipulation of the argument orderByColumn/isAsc causes sql injection. The attack may be initiated remotely. The exploit has been published and may ...
CVE-2025-9412
A vulnerability was detected in lostvip-com ruoyi-go up to 2.1. This affects the function SelectListByPage of the file modules/system/dao/DictDataDao.go. The manipulation of the argument orderByColumn/isAsc results in sql injection. The attack can be launched remotely. The exploit is now public a...
CVE-2025-9412
CVE-2025-9412 affects lostvip-com ruoyi-go up to version 2.1, targeting the file DictDataDao.go in function SelectListByPage . The vulnerability arises from improper handling of the arguments orderByColumn and isAsc , enabling SQL injection via manipulated input. It is remotely exploitable and th...
CVE-2025-9410
CVE-2025-9410 – Summary (mode C) Affected software: lostvip-com ruoyi-go up to version 2.1. The vulnerability resides in the GenTableDao.go file, specifically the function SelectListByPage. Root cause: manipulating the isAsc/orderByColumn arguments can lead to SQL injection. The issue is exploita...
CVE-2025-9410 lostvip-com ruoyi-go GenTableDao.go SelectListByPage sql injection
A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the function SelectListByPage of the file modules/system/dao/GenTableDao.go. Executing manipulation of the argument isAsc/orderByColumn can lead to sql injection. It is possible to launch the attack remotely...