CVE-2024-3691

Name of the Vulnerable Software and Affected Versions PHPGurukul Small CRM version 3.0

Description A critical issue has been found in the Registration Page component of PHPGurukul Small CRM, affecting some unknown functionality. This issue leads to SQL injection. The attack can be launched remotely. An exploit for this issue has been disclosed to the public and may be used.

Recommendations For PHPGurukul Small CRM version 3.0, consider disabling the affected Registration Page component until a patch is available. Restrict access to the Registration Page to minimize the risk of exploitation. Avoid using any functionality that may lead to SQL injection in the Registration Page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.