CVE-2025-41005 | Imaster MEMS Events CRM exchange_offers.php keyword sql injection

January 12, 2026 Yanac

A vulnerability was found in Imaster MEMS Events CRM and classified as critical. This impacts an unknown function of the file /memsdemo/exchange_offers.php. The manipulation of the argument keyword results in sql injection.

This vulnerability is known as CVE-2025-41005. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-41006 | Imaster MEMS Events CRM /memsdemo/login.php phone sql injection
CVE-2025-41004 | Imaster Patient Record Management System Endpoint complaints.php ID sql injection