Metrics
Affected Vendors & Products
Wed, 27 Aug 2025 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Metasoft
Metasoft metacrm |
|
CPEs | cpe:2.3:a:metasoft:metacrm:*:*:*:*:*:*:*:* | |
Vendors & Products |
Metasoft
Metasoft metacrm |
Tue, 22 Jul 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sun, 20 Jul 2025 07:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in Metasoft 美特软件 MetaCRM up to 6.4.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file mcc_login.jsp. The manipulation of the argument workerid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | Metasoft 美特软件 MetaCRM mcc_login.jsp sql injection | |
Weaknesses | CWE-74 CWE-89 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-07-22T13:48:46.655Z
Reserved: 2025-07-19T07:15:27.578Z
Link: CVE-2025-7873

Updated: 2025-07-22T13:48:38.587Z

Status : Analyzed
Published: 2025-07-20T07:15:25.147
Modified: 2025-08-27T17:52:58.310
Link: CVE-2025-7873

No data.

No data.