CVE-2025-11315 – This CVE describes a SQL injection vulnerabilit... (How to Fix)

Q: What is the severity of CVE-2025-11315?

CVE-2025-11315 has a CVSS score of 7.3 (HIGH). This CVE describes a SQL injection vulnerability in Tipray's Data Leakage Prevention System version 1.0. Attackers can exploit the findUserPage.do endpoint by manipulating the 'sort' parameter to execute arbitrary SQL commands. Organizations using this specific version of the DLP system are affected.

📋 TL;DR

This CVE describes a SQL injection vulnerability in Tipray's Data Leakage Prevention System version 1.0. Attackers can exploit the findUserPage.do endpoint by manipulating the 'sort' parameter to execute arbitrary SQL commands. Organizations using this specific version of the DLP system are affected.

💻 Affected Systems

Products:

Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统

Versions: 1.0

Operating Systems: Unknown - likely various as it's a web application

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability exists in the findUserPage.do endpoint with the sort parameter

📦 What is this software?

Data Leakage Prevention System by Tipray

View all CVEs affecting Data Leakage Prevention System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data exfiltration, privilege escalation, or system takeover

🟠

Likely Case

Unauthorized data access, potential credential theft, and data manipulation

🟢

If Mitigated

Limited impact with proper input validation and database permissions

🌐 Internet-Facing: HIGH - Remote exploitation is possible according to the description

🏢 Internal Only: HIGH - Even internal systems are vulnerable to authenticated or network-accessible attacks

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Proof of concept is publicly available on GitHub. The vendor has not responded to disclosure attempts.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Consider workarounds or system replacement.

🔧 Temporary Workarounds

Web Application Firewall (WAF) Rules

all

Implement WAF rules to block SQL injection patterns targeting the findUserPage.do endpoint

Input Validation Filter

all

Add input validation for the sort parameter to only allow expected values

🧯 If You Can't Patch

Isolate the DLP system in a separate network segment with strict access controls
Implement database-level protections: use least privilege accounts, enable SQL injection protection features

🔍 How to Verify

Check if Vulnerable:

Test the findUserPage.do endpoint with SQL injection payloads in the sort parameter

Check Version:

Check system version through admin interface or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return appropriate error messages

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple failed login attempts from findUserPage.do
SQL syntax errors in application logs

Network Indicators:

Unusual traffic patterns to findUserPage.do endpoint
SQL keywords in HTTP parameters

SIEM Query:

source="web_logs" AND uri="*findUserPage.do*" AND (param="*sort=*UNION*" OR param="*sort=*SELECT*" OR param="*sort=*INSERT*")

📊 Metadata

CVE ID: CVE-2025-11315

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.05% exploit probability (15.4th percentile)

Published: October 6, 2025

Last Updated: November 3, 2025

🔗 References

https://github.com/FightingLzn9/vul/blob/main/%E5%A4%A9%E9%94%90%E6%95%B0%E6%8D%AE%E6%B3%84%E9%9C%B2%E9%98%B2%E6%8A%A4%E7%B3%BB%E7%BB%9F-7.md Exploit,Third Party Advisory
https://github.com/FightingLzn9/vul/blob/main/%E5%A4%A9%E9%94%90%E6%95%B0%E6%8D%AE%E6%B3%84%E9%9C%B2%E9%98%B2%E6%8A%A4%E7%B3%BB%E7%BB%9F-7.md#3-proof-of-concept-poc Exploit
https://vuldb.com/?ctiid.327196 Permissions Required,VDB Entry
https://vuldb.com/?id.327196 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.663494 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-11315, you might also want to check these: