CVE-2025-4510 – Changjietong UFIDA CRM SQL Injection

May 10, 2025

CVE ID : CVE-2025-4510

Published : May 10, 2025, 6:15 p.m. | 2 hours, 8 minutes ago

Description : A vulnerability was found in Changjietong UFIDA CRM 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /optnty/optntyday.php. The manipulation of the argument gblOrgID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4511 – Vector4Wang Spring-Boot-Quick Remote Path Traversal Vulnerability

Next Article CVE-2025-4509 – PHPGurukul e-Diary Management System SQL Injection

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

How to install and use Ollama to run AI LLMs on your Windows 11 PC

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.13.2025)

How We Use Epic Branches. Without Breaking Our Flow.

I think the ergonomics of generators is growing on me.

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

CVE-2025-4510 – Changjietong UFIDA CRM SQL Injection

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2024-46506 – NetAlertX Unauthenticated Command Injection Vulnerability

CVE-2025-4175 – AlanBinu007 Spring-Boot-Advanced-Projects Path Traversal Vulnerability

Over Two Dozen Flaws Identified in Advantech Industrial Wi-Fi Access Points â€“ Patch ASAP

Arcee AI Introduces Arcee Agent: A Cutting-Edge 7B Parameter Language Model Specifically Designed for Function Calling and Tool Use

The Elder Scrolls 4: Oblivion Remastered — Xbox Game Pass, platforms, and everything you need to know

Kubernetes IngressNightmare Vulnerabilities: What You Need to Know

SVDQuant: A Novel 4-bit Post-Training Quantization Paradigm for Diffusion Models

Microsoft provides guidance for upcoming support of OpenAI library v2 in Semantic Kernel

DeepSeek: Beyond the Hype—A Game Changer

CVE-2025-4510 – Changjietong UFIDA CRM SQL Injection

Related Posts