Login Sign Up

CVE-2025-7915

7.3 HIGH
SQL Injection Authentication Bypass

📋 TL;DR

This critical SQL injection vulnerability in Chanjet CRM 1.0 allows attackers to execute arbitrary SQL commands through the /mail/mailinactive.php login page component. Remote attackers can potentially access, modify, or delete database content. All users running Chanjet CRM 1.0 with the vulnerable component are affected.

💻 Affected Systems

Products:
  • Chanjet CRM
Versions: 1.0
Operating Systems: All platforms running Chanjet CRM
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the /mail/mailinactive.php component on the login page. No specific configuration details available.

📦 What is this software?

Chanjet Crm by Chanjet

View all CVEs affecting Chanjet Crm →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, authentication bypass, remote code execution, or system takeover.

🟠

Likely Case

Unauthorized data access, credential theft, and potential privilege escalation within the CRM system.

🟢

If Mitigated

Limited impact with proper input validation, WAF rules, and database permissions restricting damage to non-critical data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly disclosed on GitHub. Remote exploitation without authentication makes this easily weaponizable.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement parameterized queries and input validation for all user inputs in the mailinactive.php file.

Modify PHP code to use prepared statements with PDO or mysqli

Web Application Firewall Rules

all

Deploy WAF rules to block SQL injection patterns targeting the vulnerable endpoint.

Add WAF rule: block requests to /mail/mailinactive.php containing SQL keywords

🧯 If You Can't Patch

  • Restrict network access to the CRM system using firewall rules
  • Implement database user with minimal privileges for the application

🔍 How to Verify

Check if Vulnerable:

Test the /mail/mailinactive.php endpoint with SQL injection payloads (e.g., ' OR '1'='1) and monitor for unexpected database responses.

Check Version:

Check CRM version in admin panel or configuration files

Verify Fix Applied:

Retest with SQL injection payloads after implementing fixes; successful payloads should be rejected or sanitized.

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in database logs
  • Multiple failed login attempts with SQL patterns
  • Access to /mail/mailinactive.php with suspicious parameters

Network Indicators:

  • HTTP requests to /mail/mailinactive.php containing SQL keywords (SELECT, UNION, etc.)
  • Abnormal database connection patterns from web server

SIEM Query:

source="web_logs" AND uri="/mail/mailinactive.php" AND (payload="' OR" OR payload="UNION" OR payload="SELECT")

📊 Metadata

CVE ID: CVE-2025-7915
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.04% exploit probability (10th percentile)
Published: July 21, 2025
Last Updated: December 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-7915, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)