Lucene search
K

83 matches found

Packet Storm
Packet Storm
added 2026/01/23 12:0 a.m.153 views

📄 Lingdang CRM 8.6.4.7 SQL Injection

Lingdang CRM versions 8.6.4.7 and below remote time-based blind SQL injection proof of concept exploit. ============================================================================================================================================= | Title : Lingdang CRM = 8.6.4.7 - Time-Based Blind...

8.8CVSS5.8AI score0.00448EPSS
Exploits3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-1691

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00404EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-27410

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00433EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-33665

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00577EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-33666

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00559EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-33667

Malicious code in bioql PyPI...

7.5CVSS4.9AI score0.01023EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-1689

Malicious code in bioql PyPI...

7.5CVSS4.9AI score0.00833EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/11 5:29 p.m.4 views

CVE-2025-5005

A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. This affects an unknown function of the file crm/WeiXinApp/dingtalk/indexevent.php. The manipulation of the argument corpurl results in server-side request forgery. The attack can be launched...

7.5CVSS6.6AI score0.00433EPSS
Exploits1References1
OSV
OSV
added 2025/09/09 5:16 p.m.4 views

CVE-2025-5005

A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. This affects an unknown function of the file crm/WeiXinApp/dingtalk/indexevent.php. The manipulation of the argument corpurl results in server-side request forgery. The attack can be launched...

6.9CVSS5.5AI score0.00433EPSS
Exploits1References4
NVD
NVD
added 2025/09/09 5:16 p.m.5 views

CVE-2025-5005

A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. This affects an unknown function of the file crm/WeiXinApp/dingtalk/indexevent.php. The manipulation of the argument corpurl results in server-side request forgery. The attack can be launched...

7.5CVSS0.00433EPSS
Exploits1References4
CVE
CVE
added 2025/09/09 4:32 p.m.24 views

CVE-2025-5005

CVE-2025-5005 affects Lingdang CRM up to 8.6.5.4. The vulnerability is a server-side request forgery (SSRF) in an unknown function of the file crm/WeiXinApp/dingtalk/index_event.php, caused by manipulation of the corpurl argument. Reports indicate the attack can be launched remotely and that the ...

7.5CVSS7.2AI score0.00433EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/09/09 12:0 a.m.4 views

Lingdang CRM 安全漏洞

Lingdang CRM Lingdang CRM is a customer relationship management system from the Chinese company Lingdang. A security vulnerability exists in Lingdang CRM version 8.6.5.4 and prior versions, which is caused by an incorrect manipulation of the parameter corpurl in the file...

7.5CVSS7.3AI score0.00433EPSS
Exploits1References5
CNVD
CNVD
added 2025/08/26 12:0 a.m.6 views

Lingdang CRM SQL Injection Vulnerability

Lingdang CRM Lingdang CRM is a customer relationship management system of China Lingdang Lingdang company. Lingdang CRM SQL injection vulnerability exists, the vulnerability stems from the improper operation of the getvaluestring parameter in the /crm/crmapi/erp/tabdetailmoduleSave.php file, whic...

8.8CVSS6.9AI score0.00448EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2025/08/26 12:0 a.m.135 views

📄 Lingdang CRM 8.6.4.7 SQL Injection

Lingdang CRM versions 8.6.4.7 and below suffer from a remote SQL injection vulnerability. Exploit Title: Lingdang CRM 8.6.4.7 - SQL Injection Google Dork: N/A Date: 2025-08-19 Exploit Author: Beatriz Fresno Naumova Vendor: Shanghai Lingdang Information Technology Software Link: N/A – commercial...

8.8CVSS8.5AI score0.00448EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/08/21 2:25 p.m.8 views

CVE-2025-9140

A vulnerability was identified in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this issue is some unknown functionality of the file /crm/crmapi/erp/tabdetailmoduleSave.php. The manipulation of the argument getvaluestring leads to sql injection. It is possible t...

8.8CVSS8.6AI score0.00448EPSS
Exploits3References1
OSV
OSV
added 2025/08/19 2:15 p.m.4 views

CVE-2025-9140

A vulnerability was identified in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this issue is some unknown functionality of the file /crm/crmapi/erp/tabdetailmoduleSave.php. The manipulation of the argument getvaluestring leads to sql injection. It is possible t...

8.8CVSS5.6AI score0.00448EPSS
Exploits3References5
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.9 views

PT-2025-33732 · Unknown · Lingdang Crm

Name of the Vulnerable Software and Affected Versions: Lingdang CRM versions up to 8.6.4.7 Description: A SQL injection issue exists in Lingdang CRM due to the manipulation of the getvaluestring argument in the /crm/crmapi/erp/tabdetail moduleSave.php file. This allows for remote attacks. The...

6.5CVSS8.4AI score0.00448EPSS
Exploits3References8
CNNVD
CNNVD
added 2025/08/19 12:0 a.m.5 views

Lingdang CRM SQL注入漏洞

Lingdang CRM Lingdang CRM is a customer relationship management system of China Lingdang Lingdang company. Lingdang CRM SQL injection vulnerability exists, the vulnerability stems from the improper operation of the getvaluestring parameter in the /crm/crmapi/erp/tabdetailmoduleSave.php file, whic...

8.8CVSS8AI score0.00448EPSS
Exploits3References7
OSV
OSV
added 2025/08/13 1:15 p.m.5 views

CVE-2025-8908

A vulnerability was determined in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. Affected by this issue is some unknown functionality of the file crm/WeiXinApp/yunzhijia/event.php. The manipulation of the argument openid leads to sql injection. The attack may be launched...

9.8CVSS5.7AI score0.00305EPSS
Exploits0References5
NVD
NVD
added 2025/08/13 1:15 p.m.23 views

CVE-2025-8908

A vulnerability was determined in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5.4. Affected by this issue is some unknown functionality of the file crm/WeiXinApp/yunzhijia/event.php. The manipulation of the argument openid leads to sql injection. The attack may be launched...

9.8CVSS0.00305EPSS
Exploits0References5
Rows per page
Query Builder