CVE advisoryCRITICAL
CVE-2025-6830
Xpoda Password Module SQL Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical SQL injection vulnerability exists in a password module, allowing attackers to manipulate database queries. If reachable, this could lead to unauthorized access to or modification of sensitive information, impacting data integrity and confidentiality. Confirming the presence and reachability of this module i