CVE-2025-8219
BaseFortify
Publication date: 2025-07-27
Last updated on: 2025-08-28
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 51mis | lingdang_crm | to 8.6.5.2 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
| CWE-74 | The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-8219 is a critical SQL injection vulnerability in Shanghai Lingdang Information Technology's Lingdang CRM versions up to 8.6.4.7. It occurs due to improper sanitization of the HTTP POST parameter 'getvaluestring' in the file /crm/crmapi/erp/tabdetail_moduleSave_dxkp.php. This flaw allows an attacker to inject malicious SQL code remotely without authentication, potentially manipulating backend database queries. [1, 2]
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized access, modification, or manipulation of the database, impacting the confidentiality, integrity, and availability of data. Attackers can exploit it remotely without authentication, potentially compromising sensitive information or disrupting system operations. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by checking for HTTP POST requests to the endpoint /crm/crmapi/erp/tabdetail_moduleSave_dxkp.php that include the parameter getvaluestring. One detection method is to monitor web server logs or use network traffic analysis tools to identify such requests. Additionally, attackers may use Google dorking with the query inurl:crm/crmapi/erp/tabdetail_moduleSave_dxkp.php to find vulnerable targets. Specific commands could include using curl or wget to send crafted POST requests to test for SQL injection responses, or using tools like sqlmap targeting the parameter getvaluestring on the specified URL. [2, 1]
What immediate steps should I take to mitigate this vulnerability?
The immediate recommended step is to upgrade the affected Lingdang CRM software to version 8.6.5.2 or later, as this version includes patches that implement parameterized queries and input sanitization to fix the SQL injection vulnerability. Until the upgrade can be performed, it is advisable to restrict access to the vulnerable endpoint, monitor for suspicious POST requests containing the getvaluestring parameter, and apply any available web application firewall (WAF) rules to block SQL injection attempts. [2]