Path Traversal Vulnerability in Lingdang CRM by Shanghai Lingdang Information Technology

CVE-2025-0461

What is CVE-2025-0461?

A weakness has been identified in Lingdang CRM, where improper validation of user input in the index.php file can lead to unauthorized access to files on the server. This path traversal vulnerability enables attackers to manipulate request parameters to access sensitive directories and files. Remote exploitation is possible, allowing potential intruders to gain insights into the system's structure or retrieve sensitive data stored on the server. Despite early notification of the issue, the vendor has not provided a response or remediation, placing users at risk of exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References