Customer Relationship Management System Project Security Vulnerabilities
A vulnerability, which was classified as critical, was found in SourceCodester Simple Customer Relationship Management System 1.0. This affects an unknown part of the file /php-scrm/login.php. The manipulation of the argument Password leads to sql injection. It is possible to initiate the attack...
9.8CVSS
9.7AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Profile Update...
9.8CVSS
9.7AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the contact parameter in the user profile update...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the query parameter in the user profile update...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the company parameter in the user profile update...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the address parameter in the user profile update...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration...
5.4CVSS
5.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote...
8.8CVSS
8.9AI Score
0.001EPSS
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket...
8.8CVSS
8.9AI Score
0.001EPSS
An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in...
9.8CVSS
9.8AI Score
0.007EPSS
A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload an arbitrary php file....
8.8CVSS
8.5AI Score
0.003EPSS