CNNVD-202507-3853 Information
CNNVD ID
CNNVD-202507-3853
Related CVE
- CNNVD Published: 2025-07-31
Description (Chinese)
Lingdang CRM(灵当CRM)是中国灵当(Lingdang)公司的一个客户关系管理系统。 Lingdang CRM(灵当CRM) 8.6.4.7及之前版本存在安全漏洞,该漏洞源于文件crm/WeiXinApp/yunzhijia/yunzhijiaApi.php中参数function的错误操作导致SQL注入。
Description (English)
Lingdang CRM is a customer relationship management system for Lingdang, China. Lingdang CRM (Lingdang CRM) 8.6.4.7 and previous versions had a security loophole, which originated from the error in the function of the parameter in document crm/WeiXinApp/yunzhijia/yunzhijiaApi.php, which caused the SQL injection.
Hazard Level
High
Vulnerability Type
SQL注入
Affected Vendor
灵当
Published
2025-07-31
Last Modified
2026-02-24
References
https://github.com/jackyliu666/blob01/blob/main/README.md https://vuldb.com/?submit.617844 https://vuldb.com/?id.318295 https://vuldb.com/?ctiid.318295 https://access.redhat.com/security/cve/cve-2025-8345 https://nvd.nist.gov/vuln/detail/CVE-2025-8345
Share on: