CVE-2025-41018 | Sergestec Exito 8.0 /public.php cat sql injection

October 16, 2025 Yanac

A vulnerability categorized as critical has been discovered in Sergestec Exito 8.0. This affects an unknown part of the file /public.php. The manipulation of the argument cat results in sql injection.

This vulnerability is known as CVE-2025-41018. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-41443 | Mattermost up to 10.5.10/10.11.2 Guest User Permission ids authorization
CVE-2025-41021 | Sergestec SISTICK 7.2 index.php?action=product_update obs cross site scripting