CVE-2025-41008 | Sinturno Parameter modalReport_data.php modalReport_data client sql injection

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability was found in Sinturno. It has been declared as critical. The affected element is the function modalReport_data of the file /_adm/scripts/modalReport_data.php of the component Parameter Handler. The manipulation of the argument client results in sql injection.

This vulnerability is reported as CVE-2025-41008. The attack can be launched remotely. No exploit exists.

CVE-2025-41008 | Sinturno Parameter modalReport_data.php modalReport_data client sql injection

Post correlati

CVE-2024-9932 | Wux Blog Editor Plugin up to 3.0.0 on WordPress unrestricted upload

CVE-2022-32506 | Nuki Bridge up to 1.21.x/2.12.3/2.13.1/3.3.4 SWD Debug Local Privilege Escalation

CVE-2026-22860 | Rack up to 2.2.21/3.1.19/3.2.4 Rack::Directory path traversal (GHSA-mxw3-3hh2-x2mh)

CVE-2024-12520 | Dominion Plugin up to 2.2.2 on WordPress cross site scripting