Jingmen Zeyou Large File Upload Control index.jsp sql injection

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability classified as critical has been found in Jingmen Zeyou Large File Upload Control up to 6.3. Affected is an unknown function of the file /index.jsp. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-8203

Source VulDB

Published Jul 26, 2025 at 14:32

Modified Jul 28, 2025 at 16:03

Affected Product

Vendor Jingmen Zeyou

Product Large File Upload Control

Version 6.0

Affected Versions Jingmen Zeyou Large File Upload Control 6.0
Jingmen Zeyou Large File Upload Control 6.1
Jingmen Zeyou Large File Upload Control 6.2
Jingmen Zeyou Large File Upload Control 6.3

CWE Classification

CWE-89 CWE-74

References

{
    "lastseen": "",
    "description": "A vulnerability classified as critical has been found in Jingmen Zeyou Large File Upload Control up to 6.3. Affected is an unknown function of the file /index.jsp. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-07-26T14:32:05.549Z",
    "modified": "2025-07-28T16:03:14.159Z",
    "type": "cve",
    "title": "Jingmen Zeyou Large File Upload Control index.jsp sql injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.317772\nhttps://vuldb.com/?ctiid.317772\nhttps://vuldb.com/?submit.614507\nhttps://github.com/William-xin/CVEs/issues/4",
    "id": "CVE-2025-8203",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "Jingmen Zeyou Large File Upload Control 6.0\nJingmen Zeyou Large File Upload Control 6.1\nJingmen Zeyou Large File Upload Control 6.2\nJingmen Zeyou Large File Upload Control 6.3",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Large File Upload Control",
    "version": "6.0",
    "vendor": "Jingmen Zeyou",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Jingmen Zeyou Large File Upload Control index.jsp sql injection_CVE-2025-8203