6 matches found
CVE-2025-41005
Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsdemo/exchangeoffers.php’...
CVE-2025-41005
Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsdemo/exchangeoffers.php’...
CVE-2025-41005
CVE-2025-41005 affects Imaster’s MEMS Events CRM. The vulnerability is an SQL injection in the keyword parameter of the /memsdemo/exchange_offers.php endpoint, caused by unsafeguarded input handling in that API. Impact is high (potential for unauthorized data access/modification);CVSS v4.0 base s...
CVE-2025-41005 Multiple vulnerabilities in Imaster products Open configuration options
Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsdemo/exchangeoffers.php’...
PT-2026-2264
Name of the Vulnerable Software and Affected Versions Imaster's MEMS Events CRM affected versions not specified Description The software contains an SQL injection issue in the keyword parameter of the '/memsdemo/exchange offers.php' API endpoint. This allows for potential unauthorized database...
MEMS - Events CRM SQL注入漏洞
MEMS - Events CRM is a Customer Relationship Management system by the individual developer Nzioka Victor. MEMS - Events CRM suffers from a SQL injection vulnerability that originates in the keyword parameter in /memsdemo/exchangeoffers.php...