CNNVD-202601-4930 Information

CNNVD ID

CNNVD-202601-4930

Related CVE

CVE-2020-37006

• CNNVD Published: 2026-01-29

Description (Chinese)

berliCRM是德国berliCRM公司的一个客户管理系统。 berliCRM 1.0.24版本存在SQL注入漏洞，该漏洞源于index.php端点中的src_record参数存在SQL注入，可能导致操纵数据库查询。

Description (English)

BerliCRM is a customer management system of the German company BerliCRM. Version 1.0.24 has a SQL injection loophole, which originates from the Src record parameter injection at the index.php endpoint, which may result in manipulation of the database query.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

berliCRM

Published

2026-01-29

Last Modified

2026-02-24

References

https://www.berlicrm.de https://www.exploit-db.com/exploits/48872 https://www.vulncheck.com/advisories/berlicrm-srcrecord-sql-injection