| Title | Sourcecodester Simple Customer Relationship Management (CRM) System 1.0 Admin Login /php-scrm/login.php Password SQL Injection |
|---|
| Description | A vulnerability was found in SourceCodester Simple Customer Relationship Management (CRM) System 1.0 and classified as critical. This issue affects some unknown processing of the file /php-scrm/login.php. The manipulation of the argument Password leads to sql injection.
The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. As an impact it is known to affect confidentiality, integrity, and availability. |
|---|
| Source | ⚠️ https://github.com/awans2023/CVE/blob/main/README1.md |
|---|
| User | awans (UID 41189) |
|---|
| Submission | 02/19/2023 08:29 (3 years ago) |
|---|
| Moderation | 02/19/2023 09:12 (44 minutes later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 221493 [SourceCodester Simple Customer Relationship Management System 1.0 /php-scrm/login.php Password sql injection] |
|---|
| Points | 20 |
|---|