CVE-2025-41018

SQL injection in Sergestec's Exito v8.0. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'cat' parameter in '/public.php'...

Sergestec Exito SQL注入漏洞

Sergestec Exito is a sales platform from Sergestec. A SQL injection vulnerability exists in Sergestec Exito version 8.0, which stems from incorrect manipulation of the parameter cat in the file /public.php, which could lead to a SQL injection attack...