CVE-2025-3856 – Xxyopen Novel-Plus SQL Injection Vulnerability

April 21, 2025

CVE ID : CVE-2025-3856

Published : April 22, 2025, 1:15 a.m. | 1 hour, 21 minutes ago

Description : A vulnerability was found in xxyopen Novel-Plus 5.1.0. It has been classified as critical. This affects the function searchByPage of the file /book/searchByPage. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleI got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Next Article CVE-2025-3854 – H3C GR-3000AX HTTP POST Request Handler Buffer Overflow Vulnerability

Highlights

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks

April 20, 2025

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks

GitHub has released security updates to address several vulnerabilities in GitHub Enterprise Server, including a high-severity flaw that could allow attackers to execute arbitrary code. Organizations …
Read more

Published Date:
Apr 19, 2025 (1 day, 22 hours ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-3509

CVE-2025-3246

CVE-2025-3124

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

Clair Obscur: Expedition 33 PC system requirements and specs — Can you run this turn-based RPG adventure?

Community News: Latest PECL Releases (03.11.2025)

Community News: Latest PECL Releases (03.11.2025)

A Fan Portal for The Elder Scrolls IV: Oblivion Remake

Coveo Recognizes Perficient Colleagues as MVPs in 2025

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

CVE-2025-3856 – Xxyopen Novel-Plus SQL Injection Vulnerability

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

Kubernetes IngressNightmare Vulnerabilities: What You Need to Know

tonysm/importmap-laravel

Chinese Hackers Exploiting Cisco Switches Zero-Day to Deliver Malware

Is WWE 2K25 on Xbox?

Android 16’s first beta is here with better support for adaptive apps, Live Updates notifications, and more

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks

The top 10 gifts for the developer in your life

SugarGh0st RAT Campaign Targets U.S. AI Experts

Krishna and the Mango

CVE-2025-3856 – Xxyopen Novel-Plus SQL Injection Vulnerability

Related Posts