PT-2025-30176 · Metasoft · Metasoft Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A vulnerability exists in Metasoft MetaCRM that allows for remote information disclosure through manipulation of an unknown functionality within the /env.jsp file. The exploit for this issue...

PT-2025-30180 · Metasoft · Metasoft Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM up to version 6.4.2. The issue involves an unrestricted file upload vulnerability located in an unknown function of the...

PT-2025-30178 · Metacrm · Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions through 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The vulnerability affects the AnalyzeParam function within the download.jsp file. Manipulation of the p argument leads to deserializatio...

PT-2025-30177 · Metasoft · Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical issue exists in Metasoft MetaCRM. The vulnerability affects an unknown part of the /debug.jsp file and leads to improper authentication. The attack can be initiated remotely. The...

PT-2025-30179 · Metacrm · Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The issue involves unrestricted file upload due to manipulation of the File argument within the processing of the sendfile.jsp file. This...

PT-2025-30182 · Metasoft · Metacrm

Name of the Vulnerable Software and Affected Versions: Metasoft MetaCRM versions up to 6.4.2 Description: A critical vulnerability exists in Metasoft MetaCRM. The issue is related to unrestricted file upload within the /business/common/sms/sendsms.jsp file, triggered by manipulating the File...