Apache HTTP Server: SQL Injection in CheckUnitCodeAndKey.pl

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.9

Apache HTTP Server: SQL Injection in CheckUnitCodeAndKey.pl

CVE-2025-30062

Summary

Apache HTTP Server has a security issue in a Perl script that handles user input. This could allow an attacker to inject malicious database commands, potentially leading to unauthorized access to sensitive data. To protect your server, update the affected script or apply a patch from the Apache HTTP Server project.

Original title

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection.

Original description

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection.

nvd CVSS4.0 6.9

Vulnerability type

CWE-89 SQL Injection

https://cert.pl/en/posts/2026/03/CVE-2025-10350/
https://www.cgm.com/pol_pl/products/szpital/cgm-clininet.html

Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026