CVE-2024-12999 | PHPGurukul Small CRM 1.0 /admin/edit-user.php id sql injection

Posted by Angelo Barbosa | Dec 28, 2024 | CVE

A vulnerability has been found in PHPGurukul Small CRM 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-user.php. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2024-12999. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-12999 | PHPGurukul Small CRM 1.0 /admin/edit-user.php id sql injection

Related Posts

CVE-2024-11897 | Contact Form, Survey & Form Builder Plugin up to 1.3.9 on WordPress cross site scripting

CVE-2023-3043 | AMI MegaRAC_SPx prior 12.7/13.6 BMC stack-based overflow

CVE-2024-48074 | DrayTek Vigor 2960 1.4.4 cgi-bin/mainfunction.cgi doPPPoE table command injection

CVE-2024-3720 | Tianwell Fire Intelligent Command Platform 1.1.1.1 API Interface /mfsNotice/page gsdwid sql injection