CVE-2025-8126 Information
Jul 26, 2025
cve
Description
A vulnerability classified as critical has been found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/user/export. The manipulation of the argument params[dataScope] leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Reference
https://gitee.com/deerwms/deer-wms-2/issues/ICLQUE https://gitee.com/deerwms/deer-wms-2/issues/ICLQUE https://vuldb.com/?ctiid.317511 https://vuldb.com/?id.317511 https://vuldb.com/?submit.619694
Related CNNVD
CNNVD-202507-3159 (Published: 2025-07-25)
Share on: