CVE-2025-41104 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user i…
Medium CVSS: 5.1

CVE-2025-41104

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'custom_field_1' in '/estimate_requests/save_estimate_request'.
Vendor
Fairsketch
Product
Rise Ultimate Project Manager
CWE
CWE-79
Yayın Tarihi
2025-11-11 13:15:44
Güncelleme
2025-11-17 15:21:33
Source Identifier
cve-coordination@incibe.es
KEV Date Added
-

Kategoriler

CWE-79 Rise Ultimate Project Manager MEDIUM Fairsketch 2025

Referanslar

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-fairsketchs-rise-crm-framework