CVE-2025-9140
BaseFortify
Publication date: 2025-08-19
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 51mis | lingdang_crm | to 8.6.5.4 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-74 | The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. |
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-9140 is an SQL injection vulnerability in Shanghai Lingdang Information Technology's Lingdang CRM up to version 8.6.4.7. It occurs because the 'getvaluestring' parameter in the file /crm/crmapi/erp/tabdetail_moduleSave.php is not properly sanitized or parameterized, allowing attackers to inject malicious SQL code. This flaw enables remote attackers to perform SQL injection attacks, such as time-based blind SQL injection, to extract sensitive database information or alter database queries. [1, 2]
How can this vulnerability impact me? :
This vulnerability can impact the confidentiality, integrity, and availability of the affected CRM system. Attackers can remotely exploit the flaw without authentication to execute arbitrary SQL commands, potentially extracting sensitive data, modifying or deleting data, or disrupting system operations. The exploit is publicly available and considered easy to use, increasing the risk of compromise. [2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the affected endpoint /crm/crmapi/erp/tabdetail_moduleSave.php for SQL injection via the getvaluestring parameter. One method is to send crafted requests with SQL payloads such as `SELECT IF(1=1, SLEEP(10), 0)` to observe time delays indicating a blind SQL injection. Additionally, attackers can identify vulnerable targets using Google dorking with the query `inurl:crm/crmapi/erp/tabdetail_moduleSave.php`. Network monitoring for unusual delays or suspicious requests to this endpoint may also help detect exploitation attempts. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation step is to upgrade the affected Lingdang CRM software to version 8.6.5.4 or later, where the vendor has patched all SQL injection vectors by implementing parameterized queries and input sanitization. Until the upgrade can be applied, restrict access to the vulnerable endpoint, monitor for suspicious activity, and consider applying web application firewall (WAF) rules to block malicious SQL injection payloads targeting the getvaluestring parameter. [2]