Security Advisory

CVE-2025-10346

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 08:43:21

Last updated 2025-09-29 11:18:55

Assigner INCIBE

State PUBLISHED

Description

HTML injection vulnerability in Perfex CRM v3.2.1 consisting of a stored HTML injection due to lack of proper validation of user input by sending a POST request in the parameters subject at the endpoint knoewledge_base/article.

← Browse all CVEs View on cve.org ↗