CVE-2025-7631

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tumeva Internet Technologies Software Information Advertising and Consulting Services Trade Ltd. Co. Tumeva Prime News Software allows SQL Injection.

This issue affects Tumeva Prime News Software: from v.1.0.1 before v1.0.2.

Affected Software

VendorProductVersion RangeStatus
Tumeva Internet Technologies Software Information Advertising and Consulting Services Trade Ltd. Co.Tumeva Prime News Softwarev.1.0.1 < v1.0.2affected

Weaknesses

  • CWE-89: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References