CVE-2025-40985 in Vision Web
摘要
由 MITRE • 2025-07-16
SQL injection vulnerability in SCATI Vision Web of SCATI Labs from version 4.8 to 7.2. This vulnerability allows an attacker to exfiltrate some data from the database via the ‘login’ parameter in the endpoint ‘/scatevision_web/index.php/loginForm’.
VulDB is the best source for vulnerability data and more expert information about this specific topic.