A vulnerability was detected in Xiongwei Smart Catering Cloud Platform 2.1.6446.28761. The affected element is an unknown function of the file /dishtr

CLOUD

16-12-2025 16:51

CVE-2025-14780 Vulnerabilidad documentada

Sin puntuación

Tags

#sql injection

#sql

#injection

#exploit

#lte

#form

#cloud

#vulnerability

#/sql(.*)injection/iU

#affected

#remote

#inject

#execute

#detected

#attack

#affect

Descripción

A vulnerability was detected in Xiongwei Smart Catering Cloud Platform 2.1.6446.28761. The affected element is an unknown function of the file /dishtrade/dish_trade_detail_get. manipulation argument filter results sql injection. attack can be executed remotely. exploit now public and may used.

https://github.com/zhangbuneng/3/issues/1

https://vuldb.com/?ctiid.336607

https://vuldb.com/?id.336607

https://vuldb.com/?submit.674051

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-14780

Resultados similares

Coincidentes en almenos en 50% de los tags

17-12-2025
Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Ma...
Ver información

16-12-2025 CVE-2025-59718
A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 thro...
Ver información