CVE-2025-41032
EUVD-2025-2670004.09.2025, 11:15
An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an attacker to retrieve, create, update, and delete the database, through theĀ 'data%5BAdmin%5D%5Busername%5D' parameter in /apprain/admin/manage/add/.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apprain | apprain | 4.0.5 |
𝑥
= Vulnerable software versions