
We found results for “”
CVE-2025-59397
Good to know:


Date: September 14, 2025
Open Web Analytics (OWA) before 1.8.1 allows SQL injection.
Severity Score
Related Resources (6)
Severity Score
Weakness Type (CWE)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CWE-89Top Fix

Upgrade Version
Upgrade to version open-web-analytics/open-web-analytics - 1.8.1;https://github.com/Open-Web-Analytics/Open-Web-Analytics.git - 1.8.1
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | LOW |
User Interaction (UI): | NONE |
Scope (S): | CHANGED |
Confidentiality (C): | LOW |
Integrity (I): | NONE |
Availability (A): | NONE |