66 matches found
CVE-2025-7875
A vulnerability classified as critical has been found in Metasoft 美特软件 MetaCRM up to 6.4.2. This affects an unknown part of the file /debug.jsp. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...
CVE-2025-7875
A vulnerability classified as critical has been found in Metasoft 美特软件 MetaCRM up to 6.4.2. This affects an unknown part of the file /debug.jsp. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...
CVE-2025-7877 Metasoft 美特软件 MetaCRM sendfile.jsp unrestricted upload
A vulnerability, which was classified as critical, has been found in Metasoft 美特软件 MetaCRM up to 6.4.2. This issue affects some unknown processing of the file sendfile.jsp. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has be...
CVE-2025-7877
CVE-2025-7877 affects Metasoft MetaCRM up to version 6.4.2. The issue is an unrestricted file upload caused by manipulation of the File argument in the processing of sendfile.jsp, enabling remote attacks. Exploit has been publicly disclosed. A fix/patch availability is not documented in the provi...
CVE-2025-7876 Metasoft 美特软件 MetaCRM download.jsp AnalyzeParam deserialization
A vulnerability classified as critical was found in Metasoft 美特软件 MetaCRM up to 6.4.2. This vulnerability affects the function AnalyzeParam of the file download.jsp. The manipulation of the argument p leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed t...
CVE-2025-7876 Metasoft 美特软件 MetaCRM download.jsp AnalyzeParam deserialization
A vulnerability classified as critical was found in Metasoft 美特软件 MetaCRM up to 6.4.2. This vulnerability affects the function AnalyzeParam of the file download.jsp. The manipulation of the argument p leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed t...
CVE-2025-7874
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /env.jsp. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the...
CVE-2025-7873
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...
CVE-2025-7873
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...
CVE-2025-7875
The CVE-2025-7875 entry concerns Metasoft MetaCRM (versions up to 6.4.2). The vulnerability affects an unspecified portion of the /debug.jsp file and results in improper authentication, enabling remote initiation of an attack. Public exploitation details exist in the sources, and the vendor was c...
CVE-2025-7875 Metasoft 美特软件 MetaCRM debug.jsp improper authentication
A vulnerability classified as critical has been found in Metasoft 美特软件 MetaCRM up to 6.4.2. This affects an unknown part of the file /debug.jsp. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...
CVE-2025-7875 Metasoft 美特软件 MetaCRM debug.jsp improper authentication
A vulnerability classified as critical has been found in Metasoft 美特软件 MetaCRM up to 6.4.2. This affects an unknown part of the file /debug.jsp. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may ...
CVE-2025-7874 Metasoft 美特软件 MetaCRM env.jsp information disclosure
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /env.jsp. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the...
CVE-2025-7873 Metasoft 美特软件 MetaCRM mcc_login.jsp sql injection
A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...
PT-2025-30178 · Metacrm · Metacrm
Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions through 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The vulnerability affects the AnalyzeParam function within the download.jsp file. Manipulation of the p argument leads to deserializatio...
Metasoft MetaCRM 安全漏洞
Metasoft MetaCRM is a customer relationship management system software from China Metasoft Metasoft. A security vulnerability exists in Metasoft MetaCRM 6.4.2 and earlier versions, which originates from improper handling of the file /env.jsp resulting in information disclosure...
PT-2025-30179 · Metacrm · Metacrm
Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The issue involves unrestricted file upload due to manipulation of the File argument within the processing of the sendfile.jsp file. This...
PT-2025-30182 · Metasoft · Metacrm
Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The issue is related to unrestricted file upload within the /business/common/sms/sendsms.jsp file, triggered by manipulating the File...
Metasoft MetaCRM 代码问题漏洞
Metasoft MetaCRM is a customer relationship management system software from China Metasoft Metasoft. A code issue vulnerability exists in Metasoft MetaCRM 6.4.2 and prior versions, which stems from an arbitrary file upload due to incorrect manipulation of parameter File in file...
Metasoft MetaCRM 授权问题漏洞
Metasoft MetaCRM is a customer relationship management system software from China Metasoft Metasoft. An authorization issue vulnerability exists in Metasoft MetaCRM 6.4.2 and earlier versions, which stems from improper authentication due to mishandling of the file /debug.jsp...