CVE-2025-39484

CVSS v3.1

9.3

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions Waituk Entrada versions through 5.7.7

Description An improper neutralization of special elements used in an SQL command vulnerability exists in Waituk Entrada, allowing for SQL injection. This issue could potentially allow unauthorized database access. The vulnerable component lacks proper input sanitization.

Recommendations Update Waituk Entrada to a version newer than 5.7.7.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2025-39484

Affected Products

Waituk Entrada

CVE-2025-39484

Weakness Enumeration

Related Identifiers

Affected Products

References · 9