PHPGurukul Small CRM quote-details.php sql injection

A vulnerability was found in PHPGurukul Small CRM 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/quote-details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

SQL命令中使用的特殊元素转义处理不恰当(SQL注入)

PHPGurukul Small CRM 注入漏洞

PHPGurukul Small CRM是一套客户关系管理系统。 PHPGurukul Small CRM 1.0版本存在注入漏洞，该漏洞源于/admin/quote-details.php文件的id参数包含一个SQL注入漏洞。

N/A

N/A