CVE-2025-6095 – Jasmin Ransomware SQL Injection Vulnerability

June 15, 2025

CVE ID : CVE-2025-6095

Published : June 15, 2025, 11:15 p.m. | 2 hours, 7 minutes ago

Description : A vulnerability, which was classified as critical, was found in codesiddhant Jasmin Ransomware 1.0.1. Affected is an unknown function of the file /checklogin.php. The manipulation of the argument username/password leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6097 – UTT 进取 750W Remote Unverified Password Change Vulnerability

Next Article CVE-2025-6094 – FoxCMS SQL Injection Vulnerability

Highlights

CVE-2025-4592 – WordPress Free AI Image Generator CSRF Vulnerability

June 14, 2025

CVE ID : CVE-2025-4592

Published : June 14, 2025, 9:15 a.m. | 4 hours, 56 minutes ago

Description : The AI Image Lab – Free AI Image Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6. This is due to missing or incorrect nonce validation on the ‘wpz-ai-images’ page. This makes it possible for unauthenticated attackers to update the plugin’s API key via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2025-6095 – Jasmin Ransomware SQL Injection Vulnerability

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign

High-Severity Flaw Exposes ASUS Armoury Crate to Authentication Bypass

CVE-2025-0782 – H2O-3 S3 Bucket Public Write Privilege Escalation Vulnerability

“I wish everybody could play my game.” The Outer Worlds 2 director doesn’t like its $80 price tag either, and says it was an Xbox decision

Meta’s Q1 2025 Report: Dismantling Covert Influence Campaigns from China, Iran, and Romania

CVE-2022-25868 – Apache HTTP Server Directory Traversal

CVE-2025-4592 – WordPress Free AI Image Generator CSRF Vulnerability

CVE-2025-43929 – Kitty Open Actions Local File Execution Vulnerability

CVE-2025-39595 – Quentn WP SQL Injection

CVE-2020-36844 – KnowBe4 Security Awareness Training Reflective Cross-Site Scripting

CVE-2025-6095 – Jasmin Ransomware SQL Injection Vulnerability

Related Posts