CVE-2025-1981 Information

Description

Improper neutralization of input provided by a low-privileged user into a file search functionality in Ready_’s Invoices module allows for SQL Injection attacks.

Reference

https://cert.pl/en/posts/2025/04/CVE-2025-1980 https://cert.pl/posts/2025/04/CVE-2025-1980 https://ready-os.com/pl/