CVE-2025-6749

Name of the Vulnerable Software and Affected Versions: huija bicycleSharingServer (affected versions not specified)

Description: A critical vulnerability was found in the huija bicycleSharingServer, affecting the searchAdminMessageShow function of the AdminController.java file. The manipulation of the Title argument leads to SQL injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.