CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-0409

A vulnerability classified as critical has been found in liujianview gymxmjpa 1.0. This affects the function MembertypeDaoImpl of the file src/main/java/com/liujian/gymxmjpa/controller/MembertypeController.java. The manipulation of the argument typeName leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.1%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

https://github.com/liujianview/gymxmjpa/issues/9
https://github.com/liujianview/gymxmjpa/issues/9#issue-2765816110
https://vuldb.com/?ctiid.291285
https://vuldb.com/?id.291285
https://vuldb.com/?submit.473425
https://github.com/liujianview/gymxmjpa/issues/9
https://github.com/liujianview/gymxmjpa/issues/9#issue-2765816110

Products affected by CVE-2025-0409

Liujianview » Gymxmjpa » Version: 1.0

cpe:2.3:a:liujianview:gymxmjpa:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-0409

Products

Pricing

Contact Us