CVE-2025-6009 – kiCode111 like-girl SQL Injection Vulnerability

June 12, 2025

CVE ID : CVE-2025-6009

Published : June 12, 2025, 3:15 a.m. | 1 hour, 57 minutes ago

Description : A vulnerability was found in kiCode111 like-girl 5.2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/ipAddPost.php. The manipulation of the argument bz/ipdz leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49821 – Dropbox Authentication Bypass

Next Article CVE-2025-49820 – Apache HTTP Server Cross-Site Request Forgery

Highlights

CVE-2025-4272 – Mechrevo Control Console DLL Search Path Vulnerability

May 5, 2025

CVE ID : CVE-2025-4272

Published : May 5, 2025, 11:15 a.m. | 24 minutes ago

Description : A vulnerability was found in Mechrevo Control Console 1.0.2.70. It has been rated as critical. Affected by this issue is some unknown functionality in the library C:Program FilesOEMMECHREVO Control CenterUniwillServiceMyControlCentercsCAPI.dll of the component GCUService. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

Severity: 7.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

Minecraft Vibrant Visuals finally has a release date and it’s dropping with the Happy Ghasts

QAQ-QQ-AI-QUEST

QAQ-QQ-AI-QUEST

JS Dark Arts: Abusing prototypes and the Result type

Helpful Git Aliases To Maximize Developer Productivity

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

CVE-2025-6009 – kiCode111 like-girl SQL Injection Vulnerability

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

Paragon Spyware used to Spy on European Journalists

CVE-2025-45947 – PhpGurukul Online Banquet Booking System Remote Code Execution Vulnerability

CVE-2024-55909 – IBM Concert Software Archive File DoS

Taking a responsible path to AGI

OpenAI shut down the Ghibli craze – now users are turning to open source

CVE-2025-4272 – Mechrevo Control Console DLL Search Path Vulnerability

Stretch Break Linux App Reminds You to Stop Pixel-Gawping

CVE-2025-4758 – PHPGurukul Beauty Parlour Management System SQL Injection Vulnerability

AMD’s most popular gaming CPU drops to a pre-2025 price with this deal

CVE-2025-6009 – kiCode111 like-girl SQL Injection Vulnerability

Related Posts