CVE-2025-8773

Name of the Vulnerable Software and Affected Versions: Dinstar Monitoring Platform version 1.0

Description: A critical vulnerability exists in Dinstar Monitoring Platform 甘肃省危险品库监控平台. The issue is a SQL injection vulnerability stemming from the manipulation of the userBean.loginName argument within an unknown function of the file /itc/$%7BappPath%7D/login getPasswordErrorNum.action. This allows for remote exploitation. The exploit has been publicly disclosed.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.