Small CRM 2.0 SQL Injection

Posted on 14 July 2020

Small CRM version 2.0 suffers from a remote SQL injection vulnerability. This version was first discovered to have a different SQL injection vulnerability in January of 2020 by FULLSHADE.