Critical severity9.8NVD Advisory· Published Jul 28, 2025· Updated Jun 5, 2026
CVE-2025-6918
CVE-2025-6918
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ncvav Virtual PBX Software allows SQL Injection.
This issue affects Virtual PBX Software: before 09.07.2025.
Affected products
1- Range: <09.07.2025
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.