CVE-2025-30061 | CGM CLININET up to 2024.MS3 OpenReportWindow.pl UserID sql injection

Inserito da Angelo Barbosa | Ago 27, 2025 | CVE

A vulnerability classified as critical has been found in CGM CLININET up to 2024.MS3. This affects an unknown part of the file utils/Reporter/OpenReportWindow.pl. This manipulation of the argument UserID causes sql injection.

This vulnerability is registered as CVE-2025-30061. The attack requires access to the local network. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2025-30061 | CGM CLININET up to 2024.MS3 OpenReportWindow.pl UserID sql injection

Post correlati

CVE-2024-47613 | GStreamer up to 1.24.9 gstvorbisdec.c vorbis_handle_identification_packet null pointer dereference (GHSL-2024-115)

CVE-2024-5622 | B&R Industrial Automation B&R APROL up to R 4.2-07P3/R 4.4-00P3 unnecessary privileges

CVE-2025-38350 | Linux Kernel up to 6.16-rc4 sched qlen_notify use after free

CVE-2024-20412 | Cisco Firepower Threat Defense 1000/2100/3100/4200 hard-coded password (cisco-sa-ftd-statcred-dFC8tXT5)