SQL Injection Vulnerability in codesiddhant Jasmin Ransomware Dashboard
CVE-2025-6096

6.3MEDIUM

Key Information:

Vendor: codesiddhant
Status: Jasmin Ransomware
Vendor: CVE Published:; 16 June 2025

🔔 Create codesiddhant Vulnerability Alert

What is CVE-2025-6096?

A SQL injection vulnerability exists in the Jasmin Ransomware's dashboard.php file, exposing the system to potential remote exploitation. By manipulating the 'Search' argument, an attacker may execute arbitrary SQL commands against the database. This flaw has been made public, and perpetrators could exploit it before any patching or remediation occurs. The vendor has been alerted to the issue but has yet to respond, raising concerns about timely fixes.

References

https://github.com/YZS17/CVE/blob/main/Jasmin-Ransomware/...

https://vuldb.com/?ctiid.312565

https://vuldb.com/?id.312565

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2025