CVE-2025-5698 – Brilliance Golden Link Secondary System SQL Injection Vulnerability

June 5, 2025

CVE ID : CVE-2025-5698

Published : June 5, 2025, 10:15 p.m. | 5 hours, 29 minutes ago

Description : A vulnerability, which was classified as critical, was found in Brilliance Golden Link Secondary System up to 20250424. Affected is an unknown function of the file /sysframework/logSelect.htm. The manipulation of the argument nodename leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49012 – Microsoft Azure Entra ID Intune Himmelblau Privilege Escalation Vulnerability

Next Article CVE-2025-5697 – Brilliance Golden Link Secondary System SQL Injection Vulnerability

Highlights

CVE-2025-3750 – WordPress Network Posts Extended Stored Cross-Site Scripting (XSS)

May 21, 2025

CVE ID : CVE-2025-3750

Published : May 21, 2025, 12:16 p.m. | 2 hours, 34 minutes ago

Description : The Network Posts Extended plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘post_height’ parameter in all versions up to, and including, 7.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

Multiple reports suggest a Persona 4 Remake from Atlus will be announced during the Xbox Games Showcase

TC39 advances numerous proposals at latest meeting

TC39 advances numerous proposals at latest meeting

TypeBridge – zero ceremony, compile time rpc for client and server com

Simplify Cloud-Native Development with Quarkus Extensions

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

CVE-2025-5698 – Brilliance Golden Link Secondary System SQL Injection Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

Critical Fortinet flaws now exploited in Qilin ransomware attacks

Google Classroom Adds 10 More Languages Starting May 19

Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack

Top 7 Web Design Mistakes That Hurt Your SEO and How to Avoid Them

5 Reasons Why Businesses are Shifting to Specialized Testing

CVE-2025-3750 – WordPress Network Posts Extended Stored Cross-Site Scripting (XSS)

Identifying AI-generated images with SynthID

Even Nvidia’s CEO is obsessed with Google’s NotebookLM AI tool

Man sentenced to 7 years in prison for role in $50m internet scam

CVE-2025-5698 – Brilliance Golden Link Secondary System SQL Injection Vulnerability

Related Posts