EUVD-2023-23840

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Critical SQL injection vulnerability in Zhong Bang CRMEB Java affects getAdminList function.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2023-1608	23 Mar 202323:37	–	circl
CNNVD	Zhongbang CRMEB SQL注入漏洞	23 Mar 202300:00	–	cnnvd
CVE	CVE-2023-1608	23 Mar 202319:31	–	cve
Cvelist	CVE-2023-1608 Zhong Bang CRMEB Java list getAdminList sql injection	23 Mar 202319:31	–	cvelist
NVD	CVE-2023-1608	23 Mar 202320:15	–	nvd
Prion	Sql injection	23 Mar 202320:15	–	prion
Positive Technologies	PT-2023-17114 · Zhong Bang · Crmeb	23 Mar 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-1608	23 May 202503:00	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "17dd912f-8a62-3783-8c73-42f4916031ec",
        "vendor": {
          "name": "Zhong Bang"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "114477fe-bb51-3694-be40-0338d85bd05c",
        "product": {
          "name": "CRMEB Java"
        },
        "product_version": "1.3.2"
      },
      {
        "id": "2472d35d-6a94-3118-aed7-ecfc56f290f1",
        "product": {
          "name": "CRMEB Java"
        },
        "product_version": "1.3.3"
      },
      {
        "id": "6cae0451-f08c-30fa-8c73-4da1af63d45b",
        "product": {
          "name": "CRMEB Java"
        },
        "product_version": "1.3.0"
      },
      {
        "id": "7cf0b816-9264-36d2-8351-9d586a2693a8",
        "product": {
          "name": "CRMEB Java"
        },
        "product_version": "1.3.4"
      },
      {
        "id": "bb0918aa-11cf-3fb9-8b5d-7188cdeca5c8",
        "product": {
          "name": "CRMEB Java"
        },
        "product_version": "1.3.1"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/crmeb/crmeb_java/issues/11

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 3.16.3 - 9.8

CVSS 26.5

CVSS 36.3

EPSS0.00271