PT-2025-47452 · Unknown · Eksagate Webpack Management System

Barış Baydur

Publicado

2025-11-19

Atualizado

2026-06-05

CVE-2025-10437

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Eksagate Webpack Management System versions through 20251119

Description A flaw exists in Eksagate Webpack Management System that allows for SQL Injection. This issue enables unauthorized database control without authentication. The vulnerability is due to improper neutralization of special elements within SQL commands.

Recommendations Versions prior to 20251119 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2025-10437

Produtos afetados

Eksagate Webpack Management System

PT-2025-47452 · Unknown · Eksagate Webpack Management System

CVE-2025-10437

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8