Security Advisory

CVE-2025-3893

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-23 10:20:02

Last updated 2025-05-23 12:13:22

Assigner CERT-PL

State PUBLISHED

Description

While editing pages managed by MegaBIP a user with high privileges is prompted to give a reasoning for performing this action. Input provided by the the user is not sanitized, leading to SQL Injection vulnerability. Version 5.20 of MegaBIP fixes this issue.

← Browse all CVEs View on cve.org ↗