General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-41077 | IDOR vulnerability has been found in Viafirma Inbox v4.5.13 that allows any authenticated user without privileges in th… | High (8.1) | 2026-01-12 | General-Purpose |
| CVE-2025-41006 | Imaster's MEMS Events CRM contains an SQL injection vulnerability in ‘phone’ parameter in ‘/memsdemo/login.php’. | Unknown | 2026-01-12 | General-Purpose |
| CVE-2025-41005 | Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsdemo/exchange_offers.p… | Unknown | 2026-01-12 | General-Purpose |
| CVE-2025-41004 | Imaster's Patient Records Management System is vulnerable to SQL Injection in the endpoint ‘/projects/hospital/admin/co… | Unknown | 2026-01-12 | General-Purpose |
| CVE-2025-41003 | Imaster's Patient Record Management System contains a stored Cross-Site Scripting (XSS) vulnerability in the endpoint ‘… | Unknown | 2026-01-12 | General-Purpose |