A vulnerability, which was classified as critical, was found in kiCode111 like-girl 5.2.0. Affected is an unknown function of the file /admin/CopyadminPost.php. The manipulation of the argument icp/Copyright leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
History

Thu, 19 Jun 2025 01:45:00 +0000

Type Values Removed Values Added
First Time appeared Kicode111
Kicode111 like-girl
CPEs cpe:2.3:a:kicode111:like-girl:5.2.0:*:*:*:*:*:*:*
Vendors & Products Kicode111
Kicode111 like-girl

Thu, 12 Jun 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 12 Jun 2025 02:15:00 +0000

Type Values Removed Values Added
Description A vulnerability, which was classified as critical, was found in kiCode111 like-girl 5.2.0. Affected is an unknown function of the file /admin/CopyadminPost.php. The manipulation of the argument icp/Copyright leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title kiCode111 like-girl CopyadminPost.php sql injection
Weaknesses CWE-74
CWE-89
References
Metrics cvssV2_0

{'score': 5.8, 'vector': 'AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 4.7, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2025-06-12T02:00:18.220Z

Updated: 2025-06-12T13:13:15.751Z

Reserved: 2025-06-11T18:52:59.080Z

Link: CVE-2025-6007

cve-icon Vulnrichment

Updated: 2025-06-12T13:13:11.678Z

cve-icon NVD

Status : Analyzed

Published: 2025-06-12T02:15:27.450

Modified: 2025-06-19T01:26:45.850

Link: CVE-2025-6007

cve-icon Redhat

No data.