CVE-2025-39586

216.73.217.22

· Published 17/04/2025 16:15 · Modified 17/04/2025 20:21

Labels: CVE-2025-39586 2025-04-17 CVE-2025-39586 CWE-89 [email protected]

Essential information

Published: 17/04/2025 16:15
Modified: 17/04/2025 20:21
Author: —
Creator: —
CVSS: 8.5 HIGH (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L

CVSS metrics

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid allows SQL Injection. This issue affects ProfileGrid : from n/a through 5.9.4.8.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
metagauss / profilegrid	`cpe:2.3:a:metagauss:profilegrid::::::::`
metagauss / profilegrid	`cpe:2.3:a:metagauss:profilegrid:5.9.4.8:::::::*`