A vulnerability, which was classified as critical, has been found in risheesh debutsav. This issue affects some unknown processing. The manipulation leads to sql injection. The CWE definition for the vulnerability is CWE-89. The weakness was shared 01/16/2023 as 7a8430df79277c613449262201cc792db894fc76. It is possible to read the advisory at github.com. The identification of this vulnerability is CVE-2014-125081. The attack needs to be done within the local network. There are no technical details available. There is no exploit available. The pricing for an exploit might be around USD $0-$5k at the moment. The attack technique deployed by this issue is T1505 according to MITRE ATT&CK. It is declared as not defined. We expect the 0-day to have been worth approximately $0-$5k. The patch is named 7a8430df79277c613449262201cc792db894fc76. The bugfix is ready for download at github.com. It is recommended to apply a patch to fix this issue. A possible mitigation has been published even before and not after the disclosure of the vulnerability.