CVE-2025-8345 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability classified as critical was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this vulnerability is the f…
Medium CVSS: 5.3

CVE-2025-8345

A vulnerability classified as critical was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7. Affected by this vulnerability is the function delete_user of the file crm/WeiXinApp/yunzhijia/yunzhijiaApi.php. The manipulation of the argument function leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 8.6.5.2 is able to address this issue. It is recommended to upgrade the affected component.
Vendor
51mis
Product
Lingdang Crm
CWE
CWE-74
Yayın Tarihi
2025-07-31 03:15:34
Güncelleme
2025-08-28 12:19:48
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 Lingdang Crm MEDIUM 51mis 2025

Referanslar

https://github.com/jackyliu666/blob01/blob/main/README.md https://vuldb.com/?ctiid.318295 https://vuldb.com/?id.318295 https://vuldb.com/?submit.617844 https://github.com/jackyliu666/blob01/blob/main/README.md