Browse all 6 CVE security advisories affecting Benner. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Benner is an enterprise software provider specializing in human resources and talent management solutions. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with six CVEs documented. Security assessments reveal common weaknesses in input validation and access control mechanisms. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for organizations implementing their solutions. Organizations should implement strict network segmentation and apply security patches promptly to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-1645 | Benner Connecta EditarLogado resource injection — ConnectaCWE-99 | 6.3 | Medium | 2025-02-25 |
| CVE-2025-1644 | Benner ModernaNet SG_Gravar cross-site request forgery — ModernaNetCWE-352 | 4.3 | Medium | 2025-02-25 |
| CVE-2025-1643 | Benner ModernaNet SG_AlterarSenha cross-site request forgery — ModernaNetCWE-352 | 4.3 | Medium | 2025-02-25 |
| CVE-2025-1642 | Benner ModernaNet GetImageMedico resource injection — ModernaNetCWE-99 | 4.3 | Medium | 2025-02-25 |
| CVE-2025-1641 | Benner ModernaNet GetHorariosDoDia sql injection — ModernaNetCWE-89 | 7.3 | High | 2025-02-25 |
| CVE-2025-1640 | Benner ModernaNet JS_CarregaCombo sql injection — ModernaNetCWE-89 | 7.3 | High | 2025-02-25 |
This page lists every published CVE security advisory associated with Benner. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.