CVE-2025-11252

Name of the Vulnerable Software and Affected Versions Signum Technology Promotion and Training Inc. Windesk.Fm versions through 27022026

Description An issue exists in Windesk.Fm that allows for SQL Injection. The issue is due to improper neutralization of special elements used in an SQL command. The vulnerability could potentially allow an attacker to inject malicious SQL code, potentially gaining unauthorized access to the database or manipulating data.

Recommendations Versions prior to 27022026 should be updated.