CVE-2025-7886

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-7886
A vulnerability, which was classified as critical, was found in pmTicket Project-Management-Software up to 2ef379da2075f4761a2c9029cf91d073474e7486. This affects the function getUserLanguage of the file classes/class.database.php. The manipulation of the argument user_id leads to sql injection. It is possible to initiate the attack remotely. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.

7.3 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
https://asciinema.org/a/3wu3WGpnrnMc2GDvSyLUqqHUF
https://vuldb.com/?ctiid.317001
https://vuldb.com/?id.317001
https://vuldb.com/?submit.614534
Configurations

No configuration.

History

22 Jul 2025, 13:06

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad clasificada como crítica en pmTicket Project-Management-Software hasta la versión 2ef379da2075f4761a2c9029cf91d073474e7486. Esta vulnerabilidad afecta a la función getUserLanguage del archivo classes/class.database.php. La manipulación del argumento user_id provoca una inyección SQL. El ataque puede ejecutarse en remoto. Este producto utiliza el enfoque de lanzamiento continuo para garantizar una entrega continua. Por lo tanto, no se dispone de información sobre las versiones afectadas ni sobre las actualizaciones. Se contactó al proveedor con antelación para informarle sobre esta divulgación, pero no respondió.

20 Jul 2025, 12:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-07-20 12:15

Updated : 2025-07-22 13:06

NVD link : CVE-2025-7886

Mitre link : CVE-2025-7886

CVE.ORG link : CVE-2025-7886

JSON object : View

Products Affected

No product.

CWE
CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')