0X101010

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Small CRM version 4.0 **Description** A SQL injection issue exists in PHPGurukul Small CRM 4.0. The issue is located in the file `/create-ticket.php` within an unknown function. Manipulation of the `subject` argument can lead to SQL injection. The exploit has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the `/create-ticket.php` file until a fix is available.