CVE-2025-10342 | Perfex CRM 3.2.1 POST Request /subscriptions/create Name cross site scripting

A vulnerability described as problematic has been identified in Perfex CRM 3.2.1. Affected is an unknown function of the file /subscriptions/create of the component POST Request Handler. The manipulation of the argument Name results in cross site scripting.

This vulnerability is identified as CVE-2025-10342. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More