CVE-2025-27378 — AES contains a SQL injection vulnerability due to an inactive configuration that prevents the latest SQL parsing logic from being applied. When this configuration is not enabled, crafted input may be — CVE Database · The Intelligence Room