CVE-2025-51683

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

01/12/2025

Last modified:

02/12/2025

Description

A blind SQL Injection (SQLi) vulnerability in mJobtime v15.7.2 allows unauthenticated attackers to execute arbitrary SQL statements via a crafted POST request to the /Default.aspx/update_profile_Server endpoint .

Impact

References to Advisories, Solutions, and Tools

http://mjobtime.com
https://labs.infoguard.ch/advisories/cve-2025-51682_cve-2025-51683_time_management_softare_sqli-rce/