RSS   Vulnerabilities for
'Customer relationship management system'
   RSS

2021-11-03
 
CVE-2021-43130

CWE-89
 

 
An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in customer/login.php.

 
2021-10-27
 
CVE-2021-37221

CWE-434
 

 
A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload an arbitrary php file. .

 


Copyright 2024, cxsecurity.com

 

Back to Top