What is GHSA-3h37-cc2v-wm7x?

GHSA-3h37-cc2v-wm7x is a security advisory published by GitHub Security Advisories with Critical severity. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...

Which CVE IDs does GHSA-3h37-cc2v-wm7x cover?

GHSA-3h37-cc2v-wm7x covers the following CVE IDs: CVE-2025-2812. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-3h37-cc2v-wm7x?

GHSA-3h37-cc2v-wm7x has a CVSS v3 base score of 9.8, published by GitHub Security Advisories.

GHSA-3h37-cc2v-wm7xCriticalCVSS 9.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...

Vendor

GitHub Security Advisories

Published

May 2, 2025

Last Modified

June 6, 2026

🔗 CVE IDs covered (1)

CVE-2025-2812 →

📋 Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mydata Informatics Ticket Sales Automation allows Blind SQL Injection.This issue affects Ticket Sales Automation: before 03.04.2025 (DD.MM.YYYY).

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2025-2812
https://www.usom.gov.tr/bildirim/tr-25-0099
https://github.com/sahici/CVE-2025-2812
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0099
https://github.com/advisories/GHSA-3h37-cc2v-wm7x