huija bicycleSharingServer AdminController.java selectAdminByNameLike sql injection

June 27, 2025 invoker category_cve

CVE Details

Basic Information

Title huija bicycleSharingServer AdminController.java selectAdminByNameLike sql injection
Type cve
Published 2025-06-27T04:00:16.948Z
Last Seen

Product Information

Vendor huija
Product bicycleSharingServer
Version 1.0

CVSS Information

Base Score 5.3 (MEDIUM)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description A SQL injection vulnerability in huija’s bicycleSharingServer version 1.0 allows remote attackers to exploit the selectAdminByNameLike function in AdminController.java. This issue can lead to unauthorized access and data manipulation.
AI Severity Medium
Vendor huija
Product bicycleSharingServer
Affected Version 1.0

Affected Products

  • huija bicycleSharingServer 1.0

Additional Information

CVE List
CWE List CWE-89, CWE-74
Bulletin Family

Description

A vulnerability was found in huija bicycleSharingServer 1.0 and classified as critical. This issue affects the function selectAdminByNameLike of the file AdminController.java. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.