Security Advisory

CVE-2025-10345

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 08:42:21

Last updated 2025-09-29 11:38:22

Assigner INCIBE

State PUBLISHED

Description

HTML injection vulnerability in Perfex CRM v3.2.1 consisting of a stored HTML injection due to lack of proper validation of user input by sending a POST request in the parameters name and address at the endpoint admin/leads/lead.

← Browse all CVEs View on cve.org ↗