108 matches found
CVE-2025-15390
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
CVE-2025-15390
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
CVE-2025-15390
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
CVE-2025-15390 PHPGurukul Small CRM edit-user.php authorization
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
CVE-2025-15390 PHPGurukul Small CRM edit-user.php authorization
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
CVE-2025-15390
A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for...
PHPGurukul Small CRM 安全漏洞
PHPGurukul Small CRM is a customer relationship management system from PHPGurukul. A security vulnerability exists in PHPGurukul Small CRM version 4.0, which stems from a missing authorization in the file /admin/edit-user.php, which could lead to a remote attack...
CVE-2024-44641
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php...
CVE-2024-44644
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the frmid and aremark parameters in manage-tickets.php...
CVE-2024-44647
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting XSS via the aremark parameter in manage-tickets.php...
EUVD-2024-55087
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php...
CVE-2024-44648
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via id and adminremark parameters in quote-details.php...
CVE-2024-44647
PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting XSS via the aremark parameter in manage-tickets.php...
CVE-2024-44644
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the frmid and aremark parameters in manage-tickets.php...
CVE-2024-44641
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php...
CVE-2024-44648
CVE-2024-44648 affects PHPGurukul Small CRM 3.0. The vulnerability is a SQL Injection in the file quote-details.php , via the parameters id and adminremark . The root cause is lack of validation/ sanitization of externally supplied SQL statements, enabling an attacker to execute arbitrary SQL aga...
PT-2025-47164
Name of the Vulnerable Software and Affected Versions PHPGurukul Small CRM version 3.0 Description PHPGurukul Small CRM version 3.0 is susceptible to SQL Injection through the id and adminremark parameters in the 'quote-details.php' file. This allows for potential unauthorized database access or...
CVE-2024-44644
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection in manage-tickets.php via the frm_id and aremark parameters due to lack of input validation. Public descriptions from CNVD, RH, CNNVD and CVE records indicate an attacker could execute arbitrary SQL and potentially steal sensitive database d...
CVE-2024-44641
CVE-2024-44641 affects PHPGurukul Small CRM 3.0; the issue is a SQL Injection in the change-password.php file via the oldpass parameter. Root cause: lack of input validation/sanitization on the oldpass input, enabling attacker-controlled SQL commands. This has been reported across multiple source...
CVE-2024-44641
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php...