Unrated severityNVD Advisory· Published May 2, 2025· Updated May 2, 2025
Sunnet eHRD CTMS - SQL Injection
CVE-2025-3707
Description
The eHDR CTMS from Sunnet has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL command to read database contents.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.twcert.org.tw/en/cp-139-10084-d7c47-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-10083-4ed7f-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.