{"id":7760,"date":"2025-07-07T21:27:48","date_gmt":"2025-07-07T21:27:48","guid":{"rendered":"http:\/\/localhost\/?p=7760"},"modified":"2025-07-07T21:27:48","modified_gmt":"2025-07-07T21:27:48","slug":"hitsz-ids-airda-completions-execute-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7760","title":{"rendered":"hitsz-ids airda completions execute sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nhitsz-ids airda completions execute sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-08T01:32:07.956Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-08T01:32:07.956Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nhitsz-ids<\/td>\n<\/tr>\n
Product<\/th>\nairda<\/td>\n<\/tr>\n
Version<\/th>\n0.0.3<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA SQL injection vulnerability exists in the execute function of airda version 0.0.3, allowing remote attackers to inject malicious SQL code via the question argument. This can lead to unauthorized data access and manipulation.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\nhitsz-ids<\/td>\n<\/tr>\n
AI Product<\/th>\nairda<\/td>\n<\/tr>\n
AI Version<\/th>\n0.0.3<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n