CVE-2025-8752 – Wangzhixuan Spring-Shiro-Training Command Injection Vulnerability

August 9, 2025

CVE ID : CVE-2025-8752

Published : Aug. 9, 2025, 12:15 p.m. | 11 hours, 25 minutes ago

Description : A vulnerability was found in wangzhixuan spring-shiro-training up to 94812c1fd8f7fe796c931f4984ff1aa0671ab562. It has been declared as critical. This vulnerability affects unknown code of the file /role/add. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7020 – BYD DiLink 3.0 OS IVI Unit Log Dump Encryption Bypass

Next Article CVE-2025-8751 – Protected Total WebShield Extension Chrome Cross-Site Scripting Vulnerability

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-8752 – Wangzhixuan Spring-Shiro-Training Command Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-44192 – SourceCodester Simple Barangay Management System SQL Injection Vulnerability

CVE-2025-46788 – Zoom Workplace Certificate Validation Information Disclosure Vulnerability

Grab a pair of Beats Studio Pro headphones for 50% off on Amazon right now

EraRAG: A Scalable, Multi-Layered Graph-Based Retrieval System for Dynamic and Growing Corpora

CVE-2025-5663 – PHPGurukul Auto Taxi Stand Management System SQL Injection Vulnerability

CVE-2025-5455 – Qt Denial of Service Vulnerability in qDecodeDataUrl Function

CVE-2025-6064 – WordPress WP URL Shortener CSRF

CVE-2025-5815 – WordPress Traffic Monitor Unauthenticated Data Modification Vulnerability

CVE-2025-8752 – Wangzhixuan Spring-Shiro-Training Command Injection Vulnerability

Related Posts