High severityNVD Advisory· Published Aug 27, 2025· Updated Aug 27, 2025
CVE-2025-51667
CVE-2025-51667
Description
An issue was discovered in simple-admin-core v1.2.0 thru v1.6.7. The /sys-api/role/update interface in the simple-admin-core system has a limited SQL injection vulnerability, which may lead to partial data leakage or disruption of normal system operations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/suyuan32/simple-admin-coreGo | >= 1.2.0, < 1.6.8 | 1.6.8 |
Affected products
5- ghsa-coords4 versionspkg:golang/github.com/suyuan32/simple-admin-corepkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweedpkg:rpm/suse/govulncheck-vulndb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6
>= 1.2.0, < 1.6.8+ 3 more
- (no CPE)range: >= 1.2.0, < 1.6.8
- (no CPE)range: < 0.0.20250918T182144-150000.1.107.1
- (no CPE)range: < 0.0.20250908T141310-1.1
- (no CPE)range: < 0.0.20250918T182144-150000.1.107.1
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-f2m2-4q6r-cwc4ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-51667ghsaADVISORY
- gist.github.com/66Giraffe66/fc258f7fcc65a6a1a1a01e217977b92dghsaWEB
- github.com/suyuan32/simple-admin-core/commit/f1e2c4f3c55cd5953ad7f7b0706df48adaaeb18aghsaWEB
- github.com/suyuan32/simple-admin-core/issues/333ghsaWEB
News mentions
0No linked articles in our index yet.