Published threat advisories for May 2, 2025

A code injection vulnerability in SambaBox allows attackers to execute arbitrary code, potentially compromising system integrity and data confidentiality. This issue affects SambaBox before version 5.1. Technical readers and leaders should confirm if their environment uses this technology and assess potential exposure

NVD published: May 2, 2025

A critical SQL injection vulnerability exists in Mydata Informatics Ticket Sales Automation, potentially allowing attackers to execute malicious SQL commands. This could lead to unauthorized access to or modification of sensitive data within the system. The vulnerability affects versions prior to April 3, 2025.

NVD published: May 2, 2025