CVE-2025-22700

Name of the Vulnerable Software and Affected Versions NotFound Traveler Code versions n/a through 3.1.0

Description The issue is related to an improper neutralization of special elements used in an SQL command, also known as 'SQL Injection'. This problem allows malicious SQL commands to be executed.

Recommendations For versions n/a through 3.1.0, update to a version that fixes the SQL Injection issue. As a temporary workaround, consider restricting access to SQL commands to minimize the risk of exploitation. Avoid using user-input data directly in SQL commands until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.