CVE-2025-53005 – DataEase PostgreSQL Data Source JDBC Connection Factory Argument Injection Vulnerability

June 30, 2025

CVE ID : CVE-2025-53005

Published : July 1, 2025, 1:15 a.m. | 24 minutes ago

Description : DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, there is a bypass vulnerability in Dataease’s PostgreSQL Data Source JDBC Connection Parameters. The sslfactory and sslfactoryarg parameters could trigger a bypass vulnerability. This issue has been patched in version 2.10.11.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-36056 – IBM System Storage Virtualization Engine TS7700 Cross-Site Scripting Vulnerability

Next Article CVE-2025-2141 – IBM System Storage Virtualization Engine Cross-Site Scripting Vulnerability

June 2025: All AI updates from the past month

Building a culture that will drive platform engineering success

Gartner: More than 40% of agentic AI projects will be canceled in the next few years

Never Stop Exploring (July 2025 Wallpapers Edition)

I never thought I’d praise a kickstand power bank – until I tried this one

I replaced my work PC with this Alienware laptop – now I’m wondering why I hadn’t done this sooner

How to set up Alexa to receive notifications on Prime Day deals you want

How proxy servers actually work, and why they’re so valuable

Top 6 MySQL Database Management Struggles for Laravel Developers (And Smart Fixes)

Top 6 MySQL Database Management Struggles for Laravel Developers (And Smart Fixes)

What’s the difference between named functions and arrow functions in JavaScript?

Spring Boot + Swagger: A Complete Guide to API Documentation

Relive the Golden Era: 5 Tools to Get Retro Feel on Linux

Relive the Golden Era: 5 Tools to Get Retro Feel on Linux

mpvc – mpc-like CLI tool for mpv

sherpa-onnx is speech-to-text and text-to-speech software

CVE-2025-53005 – DataEase PostgreSQL Data Source JDBC Connection Factory Argument Injection Vulnerability

CVE-2025-6554 – Google Chrome V8 Type Confusion Vulnerability

CVE-2025-6930 – PHPGurukul Zoo Management System SQL Injection Vulnerability

CVE-2025-4955 – Tarteaucitron.io WordPress Stored Cross-site Scripting Vulnerability

Netsleuth calculates and analyzes IP subnet values

What are virtual appliances, and how to quickly deploy them for performance gains

What I learned from Inspired

Accessibility vs. Inclusive Design vs. Universal Design: Understanding the Differences

FOSS Weekly #25.22: Microsoft’s Vim Alternative, Kernel 6.15, UBXI Desktop, End of Ubuntu 20.04 and More

CVE-2025-44193 – SourceCodester Simple Barangay Management System SQL Injection

VideoDubber’s YouTube Dislike Checker

CVE-2025-53005 – DataEase PostgreSQL Data Source JDBC Connection Factory Argument Injection Vulnerability

Related Posts