CVE-2025-65950 | WBCE CMS up to 1.6.4 User Management admin/users/save.php groups[] sql injection (GHSA-934v-xhx9-j2f3)

A vulnerability was found in WBCE CMS up to 1.6.4. It has been classified as critical. This issue affects some unknown processing of the file admin/users/save.php of the component User Management Module. Performing manipulation of the argument groups[] results in sql injection.

This vulnerability was named CVE-2025-65950. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More