CVE-2025-6918

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ncvav Virtual PBX Software allows SQL Injection.This issue affects Virtual PBX Software: before 09.07.2025.

References

https://www.usom.gov.tr/bildirim/tr-25-0180

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS