CVE-2025-14598

Sažetak

BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionality of affected sites. The vulnerability enables arbitrary SQL commands to be executed on the backend database.

Reference

https://afnaan.me/cve/cve-2025-14598
https://cloudilyaerp.com/
https://github.com/Afnaan-Ahmed/CVE-2025-14598
https://www.kb.cert.org/vuls/id/361400

CVSS

Base:	9.8
Impact:	5.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

10-02-2026 - 20:29

Objavljeno

09-01-2026 - 13:15