- Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cybio Gallery Widget allows SQL Injection. This issue affects Gallery Widget: from n/a through 1.2.1.
- Source
- audit@patchstack.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 8.5
- Impact score
- 4.7
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
- Severity
- HIGH
- audit@patchstack.com
- CWE-89
- Hype score
- Not currently trending
CVE-2025-28969 (CVSS:8.5, HIGH) is Awaiting Analysis. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cybio Gallery Widg..https://t.co/Sw3Jz8PCaL #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
9 Jul 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-28969 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cybio Gallery Widget allows SQL Injection. This issue affects Ga… https://t.co/LMyPCGGP8O
@CVEnew
4 Jul 2025
199 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-28969: HIGH] Cybio Gallery Widget is vulnerable to a SQL Injection flaw allowing attackers unauthorized database access. Update to Gallery Widget version 1.2.2 to patch this security issue.#cve,CVE-2025-28969,#cybersecurity https://t.co/4ejfGFqduR https://t.co/KcaJsCYwV
@CveFindCom
4 Jul 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes