SQL Injection in Zeon Global Tech Academy Pro
CVE-2025-41029
SQL injection vulnerability in Zeon Academy Pro by Zeon Global Tech. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a POST request using the parameter 'phonenumber' in '/private/continue-…
Vulnerability class: SQL Injection
EPSS: 0.000 (13.6th percentile) — read the EPSS interpretation.
Affected products
- Zeon Global Tech Academy Pro — versions 0
Weakness classification (CWE)
References
- cve-coordination@incibe.es (patch)