All 10 CVE vulnerabilities found in Perfex CRM, with AI-generated Chinese analysis, references, and POCs.
Vendor: CodeCanyon
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7783 | CodeCanyon Perfex CRM Admin Kanban Endpoint AbstractKanban.php applySortQuery sql injection CWE-89 | 6.3 | Medium | 2026-05-04 |
| CVE-2026-7782 | CodeCanyon Perfex CRM Tenant Clients.php project authorization CWE-639 | 6.3 | Medium | 2026-05-04 |
| CVE-2025-10346 | HTML injection in Perfex CRM CWE-79 | 5.4AI | MediumAI | 2025-09-29 |
| CVE-2025-10345 | HTML injection in Perfex CRM CWE-79 | 5.5AI | MediumAI | 2025-09-29 |
| CVE-2025-10344 | HTML injection in Perfex CRM CWE-79 | 6.4AI | MediumAI | 2025-09-29 |
| CVE-2025-10343 | HTML injection in Perfex CRM CWE-79 | 5.4AI | MediumAI | 2025-09-29 |
| CVE-2025-10342 | HTML injection in Perfex CRM CWE-79 | 5.4AI | MediumAI | 2025-09-29 |
| CVE-2025-10341 | HTML injection in Perfex CRM CWE-79 | 5.4AI | MediumAI | 2025-09-29 |
| CVE-2025-3219 | CodeCanyon Perfex CRM Project Discussions Module 2 cross site scripting CWE-79 | 3.5 | Low | 2025-04-04 |
| CVE-2025-2974 | CodeCanyon Perfex CRM Contracts contract cross site scripting CWE-79 | 3.5 | Low | 2025-03-31 |
All 10 known CVE vulnerabilities affecting Perfex CRM with full Chinese analysis, references, and POCs where available.