VYPR
Unrated severityNVD Advisory· Published Sep 9, 2025· Updated Sep 10, 2025

rAthena has SQL Injection in PartyBooking component via `WorldName` parameter.

CVE-2025-58448

Description

rAthena is an open-source cross-platform massively multiplayer online role playing game (MMORPG) server. Versions prior to commit 0d89ae0 have a SQL Injection in the PartyBooking component via WorldName parameter. Commit 0d89ae0 fixes the issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rathena/rAthenallm-fuzzy2 versions
    < commit 0d89ae0+ 1 more
    • (no CPE)range: < commit 0d89ae0
    • (no CPE)range: < 0d89ae0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.