SQL Injection Vulnerability in Webpack Management System by Eksagate Electronic Engineering
CVE-2025-10437

9.8CRITICAL

Key Information:

Vendor: Eksagate Electronic Engineering And Computer Industry Trade Inc.
Status: Webpack Management System
Vendor: CVE Published:; 19 November 2025

🔔 Create Eksagate Electronic Engineering And Computer Industry Trade Inc. Vulnerability Alert

What is CVE-2025-10437?

A vulnerability exists in the Webpack Management System developed by Eksagate Electronic Engineering and Computer Industry Trade Inc. This flaw is categorized as an SQL Injection issue, which allows attackers to manipulate SQL queries by injecting malicious code. If exploited, this can lead to unauthorized access to sensitive data and potentially compromise the entire database. Users of the affected system are urged to take immediate measures to secure their applications and apply any available patches.

Affected Version(s)

Webpack Management System 0 <= 20251119

References

https://www.usom.gov.tr/bildirim/tr-25-0401

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 19, 2025
Vulnerability Reserved
Sep 14, 2025

Credit

Barış BAYDUR

JSON