CVE-2025-9953

Name of the Vulnerable Software and Affected Versions Databank Accreditation Software versions through 19022026

Description The software contains an authorization bypass issue resulting from a user-controlled SQL primary key flaw. This allows for SQL injection attacks that can bypass authorization controls, potentially leading to unauthorized access and manipulation of sensitive data. The vendor was contacted regarding this issue but did not respond.

Recommendations Versions through 19022026 require attention to address the authorization bypass issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.