CNNVD-202509-817 Information

CNNVD ID

CNNVD-202509-817

Related CVE

CVE-2025-58780

• CNNVD Published: 2025-09-05

Description (Chinese)

ScienceLogic SL1是ScienceLogic公司的一个应用程序。将您的房地产连接在一起，实现多向数据流和工作流程的自动化。 ScienceLogic SL1 12.1.1之前版本存在SQL注入漏洞，该漏洞源于参数操作导致SQL注入。

Description (English)

ScienceLogicSL1 is an application of ScienceLogic. Connect your real estate to automate multiple-way data flows and workflows. The previous version of ScienceLogic SL1 12.1.1 had an injection loophole in SQL, which stemmed from the use of parameters that led to the injection of SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Scratch Coding Hut

Published

2025-09-05

Last Modified

2026-02-24

References

https://docs.sciencelogic.com/release_notes_html/Content/12-1-1/12-1-1_release_notes.htm#New_Features_in_12-1-1 https://github.com/SexyShoelessGodofWar/CVE-2025-58780 https://access.redhat.com/security/cve/cve-2025-58780

Patch

https://docs.sciencelogic.com/release_notes_html/Content/12-1-1/12-1-1_release_notes.htm#New_Features_in_12-1-1