Description
CRMEB has an SQL Injection vulnerability that allows unauthenticated attackers to gain access to sensitive data and compromise the system.
Remediation
Upgrade to the latest version of CRMEB
References
Related Vulnerabilities
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-34750)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-4962)
PHP Use of Uninitialized Resource Vulnerability (CVE-2015-8390)