CVE-2025-30060 | CGM CLININET up to 2024.MS3 ReturnUserUnitsXML.pl getUserInfo UserID sql injection

A vulnerability has been found in CGM CLININET up to 2024.MS3 and classified as critical. The affected element is the function getUserInfo of the file ReturnUserUnitsXML.pl. The manipulation of the argument UserID leads to sql injection.

This vulnerability is traded as CVE-2025-30060. Access to the local network is required for this attack to succeed. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More