CVE-2025-32290 - CERT CVE
ID CVE-2025-32290
Sažetak Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup Sticky HTML5 Music Player allows SQL Injection. This issue affects Sticky HTML5 Music Player: from n/a through 3.1.6.
Reference
CVSS
Base: 8.5
Impact: 4.7
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Zadnje važnije ažuriranje 19-05-2025 - 13:35
Objavljeno 16-05-2025 - 16:15