- Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shamalli Web Directory Free allows Blind SQL Injection. This issue affects Web Directory Free: from n/a through 1.7.6.
- Source
- audit@patchstack.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 9.3
- Impact score
- 4.7
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
- Severity
- CRITICAL
- audit@patchstack.com
- CWE-89
- Hype score
- Not currently trending
🚨 CVE-2025-28904 ⚠️🔴 CRITICAL (9.3) 🏢 Shamalli - Web Directory Free 🏗️ Unknown Version 🔗 https://t.co/vAEpObMIw7 #CyberCron #VulnAlert #InfoSec https://t.co/UCtCTFUFxS
@cybercronai
26 Mar 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-28904 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shamalli Web Directory Free allows Blind SQL Injection. This issue affects Web Directory Free https://t.co/zH5CgyPmw4
@VulmonFeeds
25 Mar 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-28904: CRITICAL] Vulnerability alert: 'SQL Injection' flaw found in Shamalli Web Directory Free version n/a-1.7.6, enabling Blind SQL Injection attacks. Secure your systems now. #cybersecurity#cybersecurity,#vulnerability https://t.co/gAN5DmY8nP https://t.co/Ge0b9dayvS
@CveFindCom
25 Mar 2025
43 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-28904 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shamalli Web Directory Free allows Blind SQL Injection. This iss… https://t.co/aCrdjEerfh
@CVEnew
25 Mar 2025
317 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes