CVE Details
Basic Information
| Title | CVE-2025-39395 |
|---|---|
| Type | cve |
| Published | 2025-05-19T20:15:25 |
| Last Seen | 2025-05-19T20:23:58 |
CVSS Information
| Base Score | 9.3 (CRITICAL) |
|---|---|
| Attack Vector | NETWORK |
| Attack Complexity | LOW |
| Privileges Required | NONE |
| User Interaction | NONE |
| Scope | CHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | NONE |
| Availability Impact | LOW |
AI Analysis
| AI Description | A critical SQL Injection vulnerability in mojoomla WPAMS allows attackers to inject malicious SQL commands, potentially leading to unauthorized data access and modification. This issue is highly severe due to the broad impact on data integrity and confidentiality. |
|---|---|
| AI Severity | Critical |
| Vendor | WordPress Community |
| Product | mojoomla WPAMS |
| Affected Version |
Additional Information
| CVE List | CVE-2025-39395 |
|---|---|
| CWE List | CWE-89 |
| Bulletin Family | cve |
Description
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in mojoomla WPAMS allows SQL Injection. This issue affects WPAMS: from n/a through…
CVSS Score Summary
Base Score: %!f(string=#) (CRITICAL)