PT-2026-33426 · Sparx Systems Pty · Sparx Pro Cloud Server
Published
2026-04-17
·
Updated
2026-04-17
·
CVE-2025-15625
CVSS v4.0
9.5
Critical
| AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:P/AU:Y/R:I/V:C/RE:M/U:Red |
Unauthenticated user is able to execute arbitrary SQL commands in Sparx Pro Cloud Server database in certain cases.
Fix
Information Disclosure
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sparx Pro Cloud Server