CVE-2024-44641
published 2025-11-17CVE-2024-44641: PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php.
medium6.5CVSS 3.1
AVNACLPRNUINSUCLILAN
PHPGurukul Small CRM 3.0 is vulnerable to SQL Injection via the oldpass parameter in change-password.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpgurukul | small_crm | — | — |