EUVD-2024-33665

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Critical SQL injection vulnerability in Lingdang CRM allows remote exploitation through userid argument

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-11121	12 Nov 202412:49	–	circl
CNNVD	Lingdang CRM SQL注入漏洞	12 Nov 202400:00	–	cnnvd
CVE	CVE-2024-11121	12 Nov 202412:31	–	cve
Cvelist	CVE-2024-11121 上海灵当信息科技有限公司 Lingdang CRM index.php sql injection	12 Nov 202412:31	–	cvelist
NVD	CVE-2024-11121	12 Nov 202413:15	–	nvd
OSV	CVE-2024-11121	12 Nov 202413:15	–	osv
Positive Technologies	PT-2024-16774 · Unknown · Lingdang Crm	12 Nov 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-11121	23 May 202507:52	–	redhatcve
Vulnrichment	CVE-2024-11121 上海灵当信息科技有限公司 Lingdang CRM index.php sql injection	12 Nov 202412:31	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "63c811d4-4255-3fad-a92c-10d0bea41638",
        "vendor": {
          "name": "上海灵当信息科技有限公司"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "15731d53-c4b8-330a-b149-c1627a67f5f1",
        "product": {
          "name": "Lingdang CRM"
        },
        "product_version": "8.6.4.1"
      },
      {
        "id": "3bf85753-c880-303e-a887-c701ed67079f",
        "product": {
          "name": "Lingdang CRM"
        },
        "product_version": "8.6.4.0"
      },
      {
        "id": "a039ba23-300d-3310-94f9-7668b551e647",
        "product": {
          "name": "Lingdang CRM"
        },
        "product_version": "8.6.4.2"
      },
      {
        "id": "e8e37ef1-71d4-36ff-82ad-03dd80cd6ad3",
        "product": {
          "name": "Lingdang CRM"
        },
        "product_version": "8.6.4.3"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
wiki	www.wiki.shikangsi.com/post/share/4d05b8c3-5464-48f3-bb14-a852b6e70abc

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 45.3

CVSS 3.16.3 - 9.8

CVSS 26.5

CVSS 36.3

EPSS0.00181

SSVC