CNNVD-202509-153 Information
Sep 02, 2025
cve
CNNVD ID
CNNVD-202509-153
Related CVE
- CNNVD Published: 2025-09-02
Description (Chinese)
Fireshare是Shane Israel个人开发者的一个媒体托管软件。 Fireshare 1.2.25版本存在安全漏洞,该漏洞源于sort参数处理不当,可能导致时间型盲SQL注入攻击。
Description (English)
Fireshare is a media hosting software for Shane Israel’s personal developer. Fireshare version 1.2.25 contains a security loophole, which stems from the mishandling of the sort parameters and could lead to a time-blind SQL-injection attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-09-02
Last Modified
2026-02-24
References
https://github.com/ShaneIsrael/fireshare/releases/tag/v1.2.26 https://github.com/ShaneIsrael/fireshare/issues/311 https://cyber-ducky.com/blind-sql-injection-in-fireshare-found-in-an-api-sort-parameter/ https://access.redhat.com/security/cve/cve-2025-55476 https://nvd.nist.gov/vuln/detail/CVE-2025-55476
Patch
https://github.com/ShaneIsrael/fireshare/releases
Share on: