PatchSiren cyber security CVE debrief
CVE-2025-5329 Martcode Software Inc. CVE debrief
CVE-2025-5329 is a CRITICAL SQL Injection vulnerability in Martcode Software Inc. Delta Course Automation through version 04022026. The vulnerability has a CVSS score of 9.8 and was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2025-5329).
- Vendor
- Martcode Software Inc.
- Product
- Delta Course Automation
- CVSS
- CRITICAL 9.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-02-04
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-02-04
- Advisory updated
- 2026-06-05
Who should care
Users of Martcode Software Inc. Delta Course Automation through version 04022026 should apply patches or mitigations to prevent SQL Injection attacks.
Technical summary
The vulnerability is caused by improper neutralization of special elements used in an SQL command. This allows attackers to inject malicious SQL code, potentially leading to unauthorized data access, modification, or deletion.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates to Martcode Software Inc. Delta Course Automation to version 04022026 or later.
- Implement input validation and sanitization to prevent SQL Injection attacks.
- Monitor for suspicious activity and implement logging and auditing to detect potential attacks.
Evidence notes
The vendor was contacted early about this disclosure but did not respond in any way.
Official resources
CVE-2025-5329 was published on 2026-02-04T14:16:08.840Z and modified on 2026-06-05T15:16:41.477Z.