CVE-2025-1871

CWE-89SQL Injection3 documents3 sources
Severity
9.3CRITICAL
EPSS
0.1%
top 79.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mayuri K 101newsMayurik Best Online News Portal
Timeline
PublishedMar 3

Description

SQL injection vulnerability have been found in 101news affecting version 1.0 through the "category" and "subcategory" parameters in admin/add-subcategory.php.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5mayuri_k/101news1.0

🔴Vulnerability Details

2
GHSA
GHSA-r6q3-vp6w-xwf9: SQL injection vulnerability have been found in 101news affecting version 12025-03-03
CVEList
SQL injection vulnerability in 101news2025-03-03
CVE-2025-1871 (CRITICAL CVSS 9.3) | SQL injection vulnerability have be | cvebase.io