CVE-2025-14598

critical

Description

BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionality of affected sites. The vulnerability enables arbitrary SQL commands to be executed on the backend database.

References

https://www.kb.cert.org/vuls/id/361400

https://github.com/Afnaan-Ahmed/CVE-2025-14598

https://cloudilyaerp.com/

https://afnaan.me/cve/cve-2025-14598

Details

Source: Mitre, NVD

Published: 2026-01-09

Updated: 2026-01-13

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H