Skip to main content

Customer Relationship Management System

2 CVEs product

Monthly

CVE-2021-43130 CRITICAL POC Act Now

An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in customer/login.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Customer Relationship Management System
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
2.2%
CVE-2021-37221 HIGH POC This Week

A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Customer Relationship Management System
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
1.1%
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in customer/login.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Customer Relationship Management System
NVD GitHub Exploit-DB
EPSS 1% CVSS 8.8
HIGH POC This Week

A file upload vulnerability exists in Sourcecodester Customer Relationship Management System 1.0 via the account update option & customer create option, which could let a remote malicious user upload. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Customer Relationship Management System
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy