{"id":67279,"date":"2025-08-02T05:32:18","date_gmt":"2025-08-02T02:02:18","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-54790-apache-files-sql-injection\/"},"modified":"2025-08-02T05:32:18","modified_gmt":"2025-08-02T02:02:18","slug":"cve-2025-54790-apache-files-sql-injection","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-54790-apache-files-sql-injection\/","title":{"rendered":"CVE-2025-54790 &#8211; Apache Files SQL Injection"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-54790<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 2, 2025, 12:15 a.m. | 1\u00a0hour, 22\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>Files is a module for managing files inside spaces and user profiles. In versions 0.16.9 and below, Files does not have logic to prevent the exploitation of backend SQL queries without direct output, potentially allowing unauthorized data access. This is fixed in version 0.16.10.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 0.0 | NA<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-54790 Published : Aug. 2, 2025, 12:15 a.m. | 1\u00a0hour, 22\u00a0minutes ago Description : Files is a module for managing files inside spaces and user profiles. In versions 0.16.9 and below, Files does not have logic to prevent the exploitation of backend SQL queries without direct output, potentially allowing unauthorized data access. &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-67279","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=67279"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67279\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=67279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=67279"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=67279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}