How severe is CVE-2025-40677?

The severity of CVE-2025-40677 has not been assessed with CVSS v3.

CVE-2025-40677

NONE

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the par

发布于: 9/18/2025更新于: 9/18/2025

描述

SQL injection vulnerability in Summar Software´s Portal del Empleado. This vulnerability allows an attacker to retrieve, create, update, and delete the database by sending a POST request using the parameter “ctl00$ContentPlaceHolder1$filtroNombre” in “/MemberPages/quienesquien.aspx”.

AI分析AI驱动

描述

AI分析AI驱动

可用漏洞利用 (1)

Summar Employee Portal 3.98.0 - Authenticated SQL Injection

参考资料