Metrics
Affected Vendors & Products
Wed, 27 Aug 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Metasoft
Metasoft metacrm |
|
CPEs | cpe:2.3:a:metasoft:metacrm:*:*:*:*:*:*:*:* | |
Vendors & Products |
Metasoft
Metasoft metacrm |
Mon, 21 Jul 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sun, 20 Jul 2025 09:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability has been found in Metasoft 美特软件 MetaCRM up to 6.4.2 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mobileupload.jsp. The manipulation of the argument File leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | Metasoft 美特软件 MetaCRM mobileupload.jsp unrestricted upload | |
Weaknesses | CWE-284 CWE-434 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-07-21T14:42:27.404Z
Reserved: 2025-07-19T07:15:44.672Z
Link: CVE-2025-7879

Updated: 2025-07-21T14:42:16.213Z

Status : Analyzed
Published: 2025-07-20T09:15:24.303
Modified: 2025-08-27T17:09:34.627
Link: CVE-2025-7879

No data.

No data.