CNNVD-202511-1900 Information

CNNVD ID

CNNVD-202511-1900

Related CVE

CVE-2024-44644

• CNNVD Published: 2025-11-17

Description (Chinese)

PHPGurukul Small CRM是PHPGurukul公司的一套客户关系管理系统。 PHPGurukul Small CRM 3.0版本存在安全漏洞，该漏洞源于manage-tickets.php中frm_id和aremark参数未经验证，可能导致SQL注入攻击。

Description (English)

PHPGurukul Small CRM is a customer relationship management system for PHPGurukul. PHPGurukul Small CRM version 3.0 contains a security loophole originating from unverified fm id and aremark parameters in Manage-tickets.php, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-11-17

Last Modified

2026-02-24

References

https://github.com/leexsoyoung/CVEs/blob/main/CVE-2024-44644.md https://phpgurukul.com/small-crm-php/ https://access.redhat.com/security/cve/cve-2024-44644