Security Advisory

CVE-2025-10473

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-15 19:02:05

Last updated 2025-09-16 13:50:09

Assigner VulDB

State PUBLISHED

Description

A security flaw has been discovered in yangzongzhuan RuoYi up to 4.8.1. This impacts the function filterKeyword of the file /com/ruoyi/common/utils/sql/SqlUtil.java of the component Blacklist Handler. The manipulation results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be exploited.

← Browse all CVEs View on cve.org ↗