CNNVD-202601-1848 Information

CNNVD ID

CNNVD-202601-1848

Related CVE

CVE-2025-41005

• CNNVD Published: 2026-01-12

Description (Chinese)

MEMS - Events CRM是Nzioka Victor个人开发者的一个客户关系管理系统。 MEMS - Events CRM存在SQL注入漏洞，该漏洞源于/memsdemo/exchange_offers.php中的keyword参数存在SQL注入漏洞。

Description (English)

MEMS - Events CRM is a customer relationship management system for Nzioka Victor personal developers. MEMS - Events CRM has an injection loophole in SQL, which stems from the Keyword parameter in/memsdemo/exchange offers.php.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2026-01-12

Last Modified

2026-02-24

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-imaster-products