CVE-2026-38528

CVE-2026-38528 affects Krayin CRM v2.2.x and is a SQL injection vulnerability exploitable via the rotten_lead parameter in /Lead/LeadDataGrid.php. The NVD/NVD-derived metrics show CVSS 3.1 base score 7.1 (High), with Network attack vector, Low attack complexity, Privileges Required: Low, User Int...

Webkul Krayin CRM 安全漏洞

Webkul Krayin CRM is a free and open-source CRM solution for small and medium-sized businesses from the Indian company Webkul. Version 2.2.x of Webkul Krayin CRM contains a security vulnerability. This vulnerability stems from an SQL injection issue with the rottenlead parameter in the...