216.73.216.170

CVE-2025-12864

· Published 10/11/2025 03:15 · Modified 18/11/2025 18:04

Labels: CVE-2025-12864 2025-11-10CVE-2025-12864CWE-89[email protected]

Essential information

Published
10/11/2025 03:15
Modified
18/11/2025 18:04
Author
Creator
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing authenticated remote attacker to inject arbitrary SQL commands to read, modify, and delete database contents.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
edetw / u-office force cpe:2.3:a:edetw:u-office_force:*:*:*:*:*:*:*:*

References