Unrated severityNVD Advisory· Published Jan 28, 2026· Updated Jan 28, 2026

SQL Injection Vulnerability in Explorance Blue

CVE-2025-57793

Description

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user-supplied input in a web application component. Crafted input can be executed as part of backend database queries. The issue is exploitable without authentication, significantly elevating the risk.

Affected products

Explorance/Bluellm-fuzzy2 versions
<8.14.9+ 1 more
- (no CPE)range: <8.14.9
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/mandiant/Vulnerability-Disclosures/blob/master/2026/MNDT-2026-0002.mdmitrethird-party-advisory
online-help.explorance.com/blue/articles/security-advisories-(january-2026)mitrevendor-advisory
online-help.explorance.com/blue/articles/security-advisory:-cve-2025-57793mitrevendor-advisory
www.explorance.com/products/bluemitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000