CVE-2025-51655 – SemCms v5.0 was discovered to contain a SQL inject

July 14, 2025

CVE ID : CVE-2025-51655

Published : July 14, 2025, 5:15 p.m. | 1 hour, 34 minutes ago

Description : SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Quanxian.php.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-51656 – SemCms SQL Injection

Next Article CVE-2025-51650 – FoxCMS Remote Code Execution (RCE)

Highlights

CVE-2013-10048 – D-Link Router OS Command Injection Vulnerability

August 1, 2025

CVE ID : CVE-2013-10048

Published : Aug. 1, 2025, 9:15 p.m. | 2 hours, 19 minutes ago

Description : An OS command injection vulnerability exists in various legacy D-Link routers—including DIR-300 rev B and DIR-600 (firmware ≤ 2.13 and ≤ 2.14b01, respectively)—due to improper input handling in the unauthenticated command.php endpoint. By sending specially crafted POST requests, a remote attacker can execute arbitrary shell commands with root privileges, allowing full takeover of the device. This includes launching services such as Telnet, exfiltrating credentials, modifying system configuration, and disrupting availability. The flaw stems from the lack of authentication and inadequate sanitation of the cmd parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Best React.js Development Services in 2025: Features, Benefits & What to Look For

August 2025: AI updates from the past month

UI automation: Why “try, try again”is your mantra

AI is returning to Taco Bell and McDonald’s drive-thrus – will customers bite this time?

I deciphered Apple’s iPhone 17 event invite – my 3 biggest theories for what’s expected

This Milwaukee 9-tool kit is $200 off for Labor Day – here’s what’s included

Massive TransUnion breach leaks personal data of 4.4 million customers – what to do now

Streamlining Application Automation with Laravel’s Task Scheduler

Streamlining Application Automation with Laravel’s Task Scheduler

A Fluent Path Builder for PHP and Laravel

Planning Sitecore Migration: Things to consider

From Novice to Pro: Mastering Lightweight Linux for Your Kubernetes Projects

From Novice to Pro: Mastering Lightweight Linux for Your Kubernetes Projects

Microsoft AI launches MAI-Voice-1 and previews MAI-1 foundation model

Clipchamp Tutorial: Cut and Split Videos Quickly

CVE-2025-51655 – SemCms v5.0 was discovered to contain a SQL inject

TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies

Ransomware Attack Hits Nevada: DMV, Health Authority Among Agencies Affected

Bare – QuikJS Based JavaScript Runtime

Drakboot is a GRUB graphical configuration tool

CVE-2025-46782 – Apache HTTP Server Unvalidated Request Parameter

CVE-2024-38822 – Salt Minion Token Validation Bypass

CVE-2013-10048 – D-Link Router OS Command Injection Vulnerability

Whonix is an anonymous operating system that runs like an app

CVE-2025-7480 – PHPGurukul Vehicle Parking Management System SQL Injection

CVE-2025-4486 – iSourcecode Gym Management System SQL Injection Vulnerability

CVE-2025-51655 – SemCms v5.0 was discovered to contain a SQL inject

Related Posts