EUVD-2025-21997

Malicious code in bioql PyPI...

CVE-2025-7873

A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-7873

A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-7873 Metasoft 美特软件 MetaCRM mcc_login.jsp sql injection

A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcclogin.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-7873

CVE-2025-7873 affects Metasoft MetaCRM up to version 6.4.2. Affected component: the file mcc_login.jsp where manipulating the workerid parameter leads to SQL injection. Impact: remote, with public exploit; vendor did not respond. Exploitation status and details are corroborated across multiple so...

Metasoft MetaCRM SQL注入漏洞

Metasoft MetaCRM is a customer relationship management system software from China Metasoft Metasoft. A SQL injection vulnerability exists in Metasoft MetaCRM 6.4.2 and earlier versions, which stems from improper handling of the parameter workerid in the file mcclogin.jsp, resulting in SQL injecti...