| عنوان | Chanjet CRM V1.0 SQL Injection |
|---|
| الوصف | A critical SQL injection vulnerability was discovered in Chanjet CRM upgradeattribute.php component. The "gblOrgID" parameter is vulnerable to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL queries on the backend database.
|
|---|
| المصدر | ⚠️ https://github.com/Bellingham-max/CVE/issues/1 |
|---|
| المستخدم | HALA (UID 92379) |
|---|
| ارسال | 06/11/2025 03:09 PM (8 أشهر منذ) |
|---|
| الاعتدال | 29/11/2025 09:25 PM (23 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 333792 [Chanjet CRM حتى 20251106 upgradeattribute.php gblOrgID حقن SQL] |
|---|
| النقاط | 18 |
|---|