Vulnerabilities

CVE-2025-10762

by Fred · 21/09/2025

A vulnerability was found in kuaifan DooTask up to 1.2.49. Affected by this vulnerability is an unknown functionality of the file app/Http/Controllers/Api/UsersController.php. The manipulation of the argument keys[department] results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.

More information : https://github.com/kuaifan/dootask/issues/283

Similar

Tags: Cybersecurity Alert