CNNVD-202507-3009 Information

Jul 23, 2025 cve

CNNVD ID

CNNVD-202507-3009

CVE-2025-54294

CNNVD Published: 2025-07-23

Description (Chinese)

StackIdeas Komento component是马来西亚StackIdeas公司的一个评论插件。 StackIdeas Komento component 4.0.0-4.0.7版本存在SQL注入漏洞，该漏洞源于SQL注入漏洞，可能导致执行任意SQL命令。

Description (English)

StackIdeas Komento Component is a comment plugin for the Malaysian company StackIdeas. There is an SQL injection loophole in version 4.0.0-4.0.7 of StackIdeas Komento Component, which originates from a leak in SQL and may lead to the execution of any SQL order.

Hazard Level

Low

Vulnerability Type

SQL注入

Affected Vendor

StackIdeas

Published

2025-07-23

Last Modified

2026-02-24

References

https://stackideas.com/

Share on: