CNNVD-202510-1225 Information

CNNVD ID

CNNVD-202510-1225

Related CVE

CVE-2025-60375

• CNNVD Published: 2025-10-09

Description (Chinese)

Perfex CRM是Perfex CRM开源的一款客户关系管理软件。用于在云中管理客户、项目和创建发票。 Perfex CRM 3.3.1之前版本存在安全漏洞，该漏洞源于服务器端验证不足，可能导致绕过登录凭据，未经授权访问用户账户。

Description (English)

Perfex CRM is a client relationship management software for Perfex CRM. To manage clients, projects and create invoices in the clouds. Prior versions of Perfex CRM 3.3.1 had a security loophole, which stemmed from inadequate server-end verification and could lead to unauthorized access to user accounts by bypassing login documents.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Perfex CRM

Published

2025-10-09

Last Modified

2026-02-24

References

https://github.com/AhamedYaseen03/CVE-2025-60375

Patch

https://help.perfexcrm.com/category/changelog/