CVE-2025-12462

Publication date

2026-03-02 12:49:00

Family

CERT-PL

State

PUBLISHED

Description

A Blind SQL injection vulnerability has been identified in DobryCMS. A remote unauthenticated attacker is able to inject SQL syntax into URL path resulting in Blind SQL Injection. This issue was fixed in versions above 8.0.