Unrated severityNVD Advisory· Published Jan 9, 2026· Updated Jan 9, 2026
Unauthenticated SQL injection via GET request parameters
CVE-2025-64092
Description
This vulnerability allows unauthenticated attackers to inject an SQL request into GET request parameters and directly query the underlying database.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.