CVE-2024-3690 | PHPGurukul Small CRM 3.0 Change Password sql injection

Posted by Angelo Barbosa | Apr 12, 2024 | CVE

A vulnerability classified as critical was found in PHPGurukul Small CRM 3.0. Affected by this vulnerability is an unknown functionality of the component Change Password Handler. The manipulation leads to sql injection.

This vulnerability is known as CVE-2024-3690. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-3690 | PHPGurukul Small CRM 3.0 Change Password sql injection

Related Posts

CVE-2024-4630 | Starter Templates Plugin up to 4.2.1 on WordPress cross site scripting

CVE-2024-41873 | Adobe Media Encoder up to 23.6.8/24.5 out-of-bounds (apsb24-53)

CVE-2024-39020 | idcCMS 1.35 vpsApiData_deal.php cross-site request forgery

CVE-2024-3316 | SourceCodester Computer Laboratory Management System 1.0 view_category.php id sql injection