CVE-2024-44641 | PHPGurukul Small CRM 3.0 change-password.php oldpass sql injection

November 17, 2025 Yanac

A vulnerability, which was classified as critical, was found in PHPGurukul Small CRM 3.0. Impacted is an unknown function of the file change-password.php. Executing manipulation of the argument oldpass can lead to sql injection.

This vulnerability is handled as CVE-2024-44641. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2024-44644 | PHPGurukul Small CRM 3.0 manage-tickets.php frm_id/aremark sql injection
CVE-2025-12974 | Rocketgenius Gravity Forms Plugin up to 2.9.21.1 on WordPress Legacy Chunked Upload unrestricted upload