How severe is CVE-2025-40677?

The severity of CVE-2025-40677 has not been assessed with CVSS v3.

CVE-2025-40677

NONE

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the par

Publicado: 9/18/2025Actualizado: 9/18/2025

Descripción

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the parameter “ctl00$ContentPlaceHolder1$filtroNombre” in “/MemberPages/quienesquien.aspx”.

Análisis IAImpulsado por IA

Descripción

Análisis IAImpulsado por IA

Exploits Disponibles (1)

Summar Employee Portal 3.98.0 - Authenticated SQL Injection

Referencias