CVE-2025-5388 – JeeWMS SQL Injection Vulnerability

May 31, 2025

CVE ID : CVE-2025-5388

Published : May 31, 2025, 6:15 p.m. | 2 hours, 43 minutes ago

Description : A vulnerability classified as critical was found in JeeWMS up to 20250504. Affected by this vulnerability is the function dogenerate of the file /generateController.do?dogenerate. The manipulation leads to sql injection. The attack can be launched remotely. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5389 – JeeWMS Improper Access Controls Remote Vulnerability

Next Article CVE-2025-5387 – JeeWMS File Handler Improper Access Controls Remote Vulnerability

Highlights

CVE-2025-7844 – TPM 2.0 Stack Buffer Overflow

August 4, 2025

CVE ID : CVE-2025-7844

Published : Aug. 4, 2025, 10:15 p.m. | 1 hour, 28 minutes ago

Description : Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default `MAX_RSA_KEY_BITS=2048` is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than 2048 bits and your application calls `wolfTPM2_RsaKey_TpmToWolf` on that key, then a stack buffer could be overrun. If the `MAX_RSA_KEY_BITS` build-time macro is set correctly (RSA bits match what TPM hardware is capable of) for the hardware target, then a stack overrun is not possible.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-52934 – Apache HTTP Server Missing Configuration

June 26, 2025

Taking a responsible path to AGI

April 2, 2025

Microsoft wants users to ditch Windows 10 before its imminent death — Using Copilot+ PCs with Recall to upsell Windows 11

April 30, 2025

Microsoft Graph CLI to be retired

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

I asked AI to modify mission-critical code, and what happened next haunts me

Why you should delete your browser extensions right now – or do this to stay safe

Dolby Vision 2 comes with big upgrades – here’s which TVs get them first

This one small feature makes this travel charger my favorite for business trips

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-5388 – JeeWMS SQL Injection Vulnerability

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

CVE-2025-4609 – Google Chrome Mojo Sandbox Escape

CVE-2025-47256 – Libxmp Buffer Overflow Vulnerability

CVE-2025-6258 – WordPress SoundSystem Stored Cross-Site Scripting Vulnerability

CVE-2025-53818 – GitHub Kanban MCP Server Command Injection Vulnerability

CVE-2025-7844 – TPM 2.0 Stack Buffer Overflow

CVE-2025-52934 – Apache HTTP Server Missing Configuration

Taking a responsible path to AGI

Microsoft wants users to ditch Windows 10 before its imminent death — Using Copilot+ PCs with Recall to upsell Windows 11

CVE-2025-5388 – JeeWMS SQL Injection Vulnerability

Related Posts