CVE-2025-55903 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A HTML injection vulnerability exists in Perfex CRM v3.3.1. The application fails to sanitize user input in the "Bill To" address field within the estimate modu…
High CVSS: 8.3

CVE-2025-55903

A HTML injection vulnerability exists in Perfex CRM v3.3.1. The application fails to sanitize user input in the "Bill To" address field within the estimate module. As a result, arbitrary HTML can be injected and rendered unescaped in client-facing documents.
Vendor
-
Product
-
CWE
CWE-116
Yayın Tarihi
2025-10-10 20:15:37
Güncelleme
2025-10-14 19:36:59
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-116 HIGH 2025

Referanslar

https://codecanyon.net/item/perfex-powerful-open-source-crm/14013737 https://github.com/ajansha/CVE-2025-55903