Security Advisory

CVE-2025-10342

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 08:38:12

Last updated 2025-09-29 11:41:02

Assigner INCIBE

State PUBLISHED

Description

HTML injection vulnerability in Perfex CRM v3.2.1 consisting of a stored HTML injection due to lack of proper validation of user input by sending a POST request in the parameter name at the endpoint /subscriptions/create.

← Browse all CVEs View on cve.org ↗