Security Advisory

CVE-2025-12462

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-02 12:49:00

Last updated 2026-03-31 15:17:29

Assigner CERT-PL

State PUBLISHED

Description

A Blind SQL injection vulnerability has been identified in DobryCMS. A remote unauthenticated attacker is able to inject SQL syntax into URL path in multiple parameters resulting in Blind SQL Injection. This issue was fixed in versions above 8.0.

← Browse all CVEs View on cve.org ↗