EUVD-2025-35848

ID: EUVD-2025-35848

Severity: critical

CVSS v4: 9.3 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

A SQL injection vulnerability has been identified in DobryCMS. Improper neutralization of input provided by user into language functionality allows for SQL Injection attacks. This issue affects older branches of this software.

Timestamps

Normalized: 2025-12-31T11:32:34Z UTC
Last updated: 2025-12-31T11:31:23Z UTC

References

No references provided.

VulnAI

EUVD-2025-35848

Description

Timestamps

References