Simple Customer Relationship Management System Security Vulnerabilities and Issues — Simple Customer Relationship Management System CVE List

Lucene search

Oretnom23Simple Customer Relationship Management System

13 matches found

CVE•added 2023/02/27 4:15 p.m.•61 views

CVE-2023-24364

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel.

8.8CVSS8.9AI score0.00266EPSS

CVE•added 2023/02/27 4:15 p.m.•49 views

CVE-2023-24656

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket function.

8.8CVSS8.9AI score0.00265EPSS

CVE•added 2023/02/27 4:15 p.m.•45 views

CVE-2023-24654

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote function.

8.8CVSS8.9AI score0.00265EPSS

CVE•added 2023/03/15 2:15 p.m.•45 views

CVE-2023-24732

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update function.

8.8CVSS8.9AI score0.00341EPSS

CVE•added 2023/03/15 2:15 p.m.•44 views

CVE-2023-24729

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the address parameter in the user profile update function.

8.8CVSS8.9AI score0.01133EPSS

CVE•added 2023/03/15 2:15 p.m.•44 views

CVE-2023-24730

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the company parameter in the user profile update function.

8.8CVSS8.9AI score0.01133EPSS

CVE•added 2023/02/27 4:15 p.m.•40 views

CVE-2023-24652

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket function.

8.8CVSS8.9AI score0.00265EPSS

CVE•added 2023/03/15 2:15 p.m.•39 views

CVE-2023-24728

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the contact parameter in the user profile update function.

8.8CVSS8.9AI score0.00341EPSS

CVE•added 2023/03/23 1:15 a.m.•36 views

CVE-2023-24655

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Profile Update function.

9.8CVSS9.7AI score0.00195EPSS

CVE•added 2023/03/15 2:15 p.m.•36 views

CVE-2023-24731

Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the query parameter in the user profile update function.

8.8CVSS8.9AI score0.00341EPSS

CVE•added 2023/02/27 4:15 p.m.•35 views

CVE-2023-24651

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration page.

5.4CVSS5.9AI score0.00068EPSS

CVE•added 2023/02/27 4:15 p.m.•34 views

CVE-2023-24653

Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password function.

8.8CVSS8.9AI score0.00265EPSS

CVE•added 2023/02/19 9:15 a.m.•33 views

CVE-2023-0917

A vulnerability, which was classified as critical, was found in SourceCodester Simple Customer Relationship Management System 1.0. This affects an unknown part of the file /php-scrm/login.php. The manipulation of the argument Password leads to sql injection. It is possible to initiate the attack re...

9.8CVSS8.8AI score0.00053EPSS