CVE-2025-41006 | Imaster MEMS Events CRM /memsdemo/login.php phone sql injection

January 12, 2026 Yanac

A vulnerability was found in Imaster MEMS Events CRM. It has been classified as critical. Affected is an unknown function of the file /memsdemo/login.php. This manipulation of the argument phone causes sql injection.

This vulnerability is handled as CVE-2025-41006. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-65553 | D3D Wi-Fi Home Security System ZX-G12 2.1.17 denial of service
CVE-2025-41005 | Imaster MEMS Events CRM exchange_offers.php keyword sql injection