How severe is CVE-2025-40677?

The severity of CVE-2025-40677 has not been assessed with CVSS v3.

CVE-2025-40677

NONE

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the par

Published: 9/18/2025Updated: 9/18/2025

Description

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the parameter “ctl00$ContentPlaceHolder1$filtroNombre” in “/MemberPages/quienesquien.aspx”.

AI AnalysisPowered by AI

Description

AI AnalysisPowered by AI

Available Exploits (1)

Summar Employee Portal 3.98.0 - Authenticated SQL Injection

References