CVE Details
Basic Information
| Title | kiCode111 like-girl CopyadminPost.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-06-12T02:00:18.220Z |
| Last Seen |
Product Information
| Vendor | kiCode111 |
|---|---|
| Product | like-girl |
| Version | 5.2.0 |
CVSS Information
| Base Score | 5.1 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical SQL injection vulnerability exists in kiCode111’s like-girl 5.2.0. The vulnerability is found in /admin/CopyadminPost.php and can be exploited remotely. The vendor was notified but did not respond. |
|---|---|
| AI Severity | Medium |
| Vendor | kiCode111 |
| Product | like-girl |
| Affected Version | 5.2.0 |
Affected Products
- kiCode111 like-girl 5.2.0
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-89, CWE-74 |
| Bulletin Family |
References
Description
A vulnerability, which was classified as critical, was found in kiCode111 like-girl 5.2.0. Affected is an unknown function of the file /admin/CopyadminPost.php. The manipulation of the argument icp/Copyright leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.