Lucene search
K

7 matches found

CNVD
CNVD
added 2025/05/20 12:0 a.m.2 views

Yonyou Changjietong UFIDA CRM SQL Injection Vulnerability

Yonyou Changjietong UFIDA CRM is a customer relationship management system for small and medium-sized enterprises SMEs from China's Yonyou, integrating sales automation and marketing analytics. Yonyou Changjietong UFIDA CRM suffers from a SQL injection vulnerability that originates from the lack ...

6.5CVSS8.2AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/12 6:27 p.m.15 views

CVE-2025-4510

A vulnerability was found in Changjietong UFIDA CRM 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /optnty/optntyday.php. The manipulation of the argument gblOrgID leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS7.3AI score0.00254EPSS
Exploits0References1
NVD
NVD
added 2025/05/10 6:15 p.m.15 views

CVE-2025-4510

A vulnerability was found in Changjietong UFIDA CRM 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /optnty/optntyday.php. The manipulation of the argument gblOrgID leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS0.00254EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/10 6:0 p.m.8 views

CVE-2025-4510 Changjietong UFIDA CRM optntyday.php sql injection

A vulnerability was found in Changjietong UFIDA CRM 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /optnty/optntyday.php. The manipulation of the argument gblOrgID leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS7.3AI score0.00254EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/10 6:0 p.m.21 views

CVE-2025-4510 Changjietong UFIDA CRM optntyday.php sql injection

A vulnerability was found in Changjietong UFIDA CRM 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /optnty/optntyday.php. The manipulation of the argument gblOrgID leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS0.00254EPSS
Exploits0References4
CVE
CVE
added 2025/05/10 6:0 p.m.54 views

CVE-2025-4510

CVE-2025-4510 affects Changjietong UFIDA CRM 1.0. The vulnerability is a SQL injection in the file /optnty/optntyday.php triggered by manipulating the gblOrgID parameter. It can be exploited remotely; several sources describe the issue as critical. The root cause is lack of validation/escaping fo...

6.5CVSS7.6AI score0.00254EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/10 12:0 a.m.5 views

PT-2025-20636 · Ufida · Changjietong Ufida Crm

Name of the Vulnerable Software and Affected Versions: Changjietong UFIDA CRM version 1.0 Description: A critical issue has been identified, affecting the file /optnty/optntyday.php. The manipulation of the gblOrgID argument leads to SQL injection. This issue can be exploited remotely...

6.5CVSS6.8AI score0.00254EPSS
Exploits0References9
Rows per page
Query Builder