VYPR

Baota Panel Backstage SQL Injection Vulnerability

by Coolcj Stack

CVEs (1)

  • CVE-2025-12914MedNov 8, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability has been found in aaPanel BaoTa up to 11.2.x. This vulnerability affects unknown code of the file /database?action=GetDatabaseAccess of the component Backend. The manipulation of the argument Name leads to sql injection. The attack can be initiated remotely. The…