Oretnom23 Simple_customer_relationship_management_system
15 CVEs affecting Oretnom23 Simple_customer_relationship_management_system. Latest disclosed: 2024-05-14. Critical: 1, High: 11.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-24655 | Critical | 9.8 | 2023-03-23 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Profile Update fun… |
CVE-2023-24732 | High | 8.8 | 2023-03-15 | Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update… |
CVE-2023-24731 | High | 8.8 | 2023-03-15 | Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the query parameter in the user profile update f… |
CVE-2023-24730 | High | 8.8 | 2023-03-15 | Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the company parameter in the user profile update… |
CVE-2023-24729 | High | 8.8 | 2023-03-15 | Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the address parameter in the user profile update… |
CVE-2023-24728 | High | 8.8 | 2023-03-15 | Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the contact parameter in the user profile update… |
CVE-2023-24656 | High | 8.8 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket f… |
CVE-2023-24654 | High | 8.8 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote fu… |
CVE-2023-24653 | High | 8.8 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password… |
CVE-2023-24652 | High | 8.8 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create tick… |
CVE-2023-24364 | High | 8.8 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel. |
CVE-2023-0917 | High | 7.3 | 2023-02-19 | A vulnerability, which was classified as critical, was found in SourceCodester Simple Customer Relationship Management System 1.0. This affects an unknown part… |
CVE-2023-24204 | Medium | 5.4 | 2024-05-14 | SQL injection vulnerability in SourceCodester Simple Customer Relationship Management System v1.0 allows attacker to execute arbitrary code via the name parame… |
CVE-2023-24203 | Medium | 5.4 | 2024-05-14 | Cross Site Scripting vulnerability in SourceCodester Simple Customer Relationship Management System v1.0 allows attacker to execute arbitary code via the compa… |
CVE-2023-24651 | Medium | 5.4 | 2023-02-27 | Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration page. |