01642 06 11 11 Arrange Call

SQL Injection Vulnerability in PHPGurukul Small CRM 3.0 Users Login Panel

CVE-2023-50035 · CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2023-50035

PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection on the Users login panel because of "password" parameter is directly used in the SQL query without any sanitization and the SQL Injection payload being executed.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.