CVE-2025-11252
EUVD-2025-20813827.02.2026, 13:16
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Signum Technology Promotion and Training Inc. Windesk.Fm allows SQL Injection.This issue affects windesk.Fm: before v2.3.4.
NOTE:
The vendor patched the vulnerability after the CVE was published.Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| signumtte | windesk.fm | 𝑥 ≤ 27022026 |
𝑥
= Vulnerable software versions