SQLi in Exagate's Webpack Management System

Successful exploitation of this SQL Injection vulnerability could grant an attacker complete control over the Webpack Management System's database. This could involve extracting sensitive user data, including credentials and personal information. An attacker could also modify data, corrupt the system, or even execute arbitrary commands on the underlying server. The blast radius extends to any data stored within the database, and depending on the system's configuration, could potentially lead to lateral movement within the network. While no specific real-world exploits have been publicly linked to this CVE yet, SQL Injection vulnerabilities are consistently among the most exploited, often leading to significant data breaches and system downtime.

Organizations utilizing the Eksagate Webpack Management System, particularly those with sensitive data stored in the database, are at significant risk. Systems with older, unpatched versions are especially vulnerable. Shared hosting environments where multiple users share a database are also at increased risk.

1. 2025-11-19Disclosure

   disclosure

1. Gereserveerd2025-09-14
2. Gepubliceerd2025-11-19
3. Gewijzigd2026-03-26
4. EPSS bijgewerkt2026-03-23

The primary mitigation for CVE-2025-10437 is to immediately upgrade the Webpack Management System to version 20251119.0.1 or later. If upgrading is not immediately feasible, consider implementing temporary workarounds such as input validation and parameterized queries to sanitize user-supplied data before it is used in SQL queries. Web Application Firewalls (WAFs) configured with rules to detect and block SQL Injection attempts can also provide an additional layer of protection. After upgrading, verify the fix by attempting a SQL Injection payload through the vulnerable endpoint and confirming that it is properly sanitized.