Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Simple Customer Relationship Management System Security Vulnerabilities - 2023

cve
cve

CVE-2023-0917

A vulnerability, which was classified as critical, was found in SourceCodester Simple Customer Relationship Management System 1.0. This affects an unknown part of the file /php-scrm/login.php. The manipulation of the argument Password leads to sql injection. It is possible to initiate the attack re...

9.8CVSS

9.7AI Score

0.002EPSS

2023-02-19 09:15 AM
23
cve
cve

CVE-2023-24364

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-27 04:15 PM
37
cve
cve

CVE-2023-24651

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration page.

5.4CVSS

5.9AI Score

0.001EPSS

2023-02-27 04:15 PM
21
cve
cve

CVE-2023-24652

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-27 04:15 PM
22
cve
cve

CVE-2023-24653

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-27 04:15 PM
17
cve
cve

CVE-2023-24654

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-27 04:15 PM
21
cve
cve

CVE-2023-24655

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Profile Update function.

9.8CVSS

9.7AI Score

0.002EPSS

2023-03-23 01:15 AM
20
cve
cve

CVE-2023-24656

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-27 04:15 PM
28
cve
cve

CVE-2023-24728

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the contact parameter in the user profile update function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-03-15 02:15 PM
22
cve
cve

CVE-2023-24729

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the address parameter in the user profile update function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-03-15 02:15 PM
18
cve
cve

CVE-2023-24730

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the company parameter in the user profile update function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-03-15 02:15 PM
23
cve
cve

CVE-2023-24731

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the query parameter in the user profile update function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-03-15 02:15 PM
23
cve
cve

CVE-2023-24732

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update function.

8.8CVSS

8.9AI Score

0.001EPSS

2023-03-15 02:15 PM
23