CVE 9.8 CRITICAL

CVE-2025-56385_CVE-2025-56385

November 13, 2025 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

A SQL injection vulnerability exists in the login functionality of WellSky Harmony version 4.1.0.2.83 within the 'xmHarmony.asp' endpoint. User-supplied input to the 'TXTUSERID' parameter is not properly sanitized before being incorporated into a SQL query. Successful authentication may lead to authentication bypass, data leakage, or full system compromise of backend database contents.

AI Analysis

SQL injection vulnerability in WellSky Harmony's login functionality

Basic Information

ID CVE-2025-56385

Source mitre

Published Nov 12, 2025 at 00:00

Modified Nov 13, 2025 at 15:06

Affected Product

Vendor WellSky

Product WellSky Harmony

Version 4.1.0.2.83

Affected Versions n/a n/a n/a

CWE Classification

CWE-89

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor WellSky

Product WellSky Harmony

Version 4.1.0.2.83

References

{
    "lastseen": "",
    "description": "A SQL injection vulnerability exists in the login functionality of WellSky Harmony version 4.1.0.2.83 within the 'xmHarmony.asp' endpoint. User-supplied input to the 'TXTUSERID' parameter is not properly sanitized before being incorporated into a SQL query. Successful authentication may lead to authentication bypass, data leakage, or full system compromise of backend database contents.",
    "published": "2025-11-12T00:00:00.000Z",
    "modified": "2025-11-13T15:06:13.489Z",
    "type": "cve",
    "title": "CVE-2025-56385",
    "source": "mitre",
    "references": "http://harmony.com\nhttp://wellsky.com\nhttps://machevalia.blog/blog/cve-2025-56385-wellsky-harmony-sql-injection",
    "id": "CVE-2025-56385",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WellSky Harmony",
    "version": "4.1.0.2.83",
    "vendor": "WellSky",
    "ai_description": "SQL injection vulnerability in WellSky Harmony's login functionality",
    "ai_severity": "Critical",
    "ai_vendor": "WellSky",
    "ai_product": "WellSky Harmony",
    "ai_version": "4.1.0.2.83",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply