CVE-2025-4738 – Yirmibes Software MY ERP SQL Injection

June 19, 2025

CVE ID : CVE-2025-4738

Published : June 19, 2025, 1:15 p.m. | 1 hour, 14 minutes ago

Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Yirmibes Software MY ERP allows SQL Injection.This issue affects MY ERP: before 1.170.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleManipulate Image URLs in Laravel with the Image Transform Package

Next Article CVE-2025-6266 – FLIR AX8 Unrestricted File Upload Vulnerability

Highlights

CVE-2025-3528 – OpenShift Mirror Registry Privilege Escalation Vulnerability

May 9, 2025

CVE ID : CVE-2025-3528

Published : May 9, 2025, 12:15 p.m. | 3 hours, 28 minutes ago

Description : A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror Registry for OpenShift has write access to the `/etc/passwd`. This flaw allows a malicious actor with access to the container to modify the passwd file and elevate their privileges to the root user within that pod.

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

CVE-2025-4738 – Yirmibes Software MY ERP SQL Injection

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

xxHash – non-cryptographic hash algorithm

CVE-2025-4666 – Zotpress WordPress Stored Cross-Site Scripting Vuln

CVE-2025-5933 – WordPress RD Contacto CSRF Vulnerability

Laravel Inertia Roles & Permissions: Breeze/Jetstream Examples

CVE-2025-3528 – OpenShift Mirror Registry Privilege Escalation Vulnerability

CISA Adds SAP NetWeaver Vulnerability to KEV Catalog

Distribution Release: CachyOS 250824

CVE-2025-43842 – Apache Retrieval-based-Voice-Conversion-WebUI Command Injection Vulnerability

CVE-2025-4738 – Yirmibes Software MY ERP SQL Injection

Related Posts