Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-27225

TRUfusion Enterprise through 7.10.4.0 exposes the /trufusionPortal/jsp/internal_admin_contact_login.jsp endpoint to unauthenticated users. This endpoint discloses sensitive internal information including PII to unauthenticated attackers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.284
EPSS Ranking 96.3%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-27225


Products
Pricing
Contact Us

Shodan ® - All rights reserved