CVE-2020-37004

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2020-37004
The Ultimate Project Manager CRM PRO version 2.0.5 contains a blind SQL injection vulnerability that allows attackers to extract usernames and password hashes from the tbl_users database table. Attackers can exploit the /frontend/get_article_suggestion/ endpoint by crafting malicious search parameters to progressively guess and retrieve user credentials through boolean-based inference techniques.

8.2 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://ultimatepro.codexcube.com/
https://www.exploit-db.com/exploits/48912
https://www.vulncheck.com/advisories/ultimate-project-manager-crm-pro-sqli-credentials-leakage
Configurations

No configuration.

History

26 May 2026, 14:16

Type Values Removed Values Added
Summary (en) Ultimate Project Manager CRM PRO 2.0.5 contains a blind SQL injection vulnerability that allows attackers to extract usernames and password hashes from the tbl_users database table. Attackers can exploit the /frontend/get_article_suggestion/ endpoint by crafting malicious search parameters to progressively guess and retrieve user credentials through boolean-based inference techniques. (en) The Ultimate Project Manager CRM PRO version 2.0.5 contains a blind SQL injection vulnerability that allows attackers to extract usernames and password hashes from the tbl_users database table. Attackers can exploit the /frontend/get_article_suggestion/ endpoint by crafting malicious search parameters to progressively guess and retrieve user credentials through boolean-based inference techniques.

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Ultimate Project Manager CRM PRO 2.0.5 contiene una vulnerabilidad de inyección SQL ciega que permite a los atacantes extraer nombres de usuario y hashes de contraseñas de la tabla de la base de datos tbl_users. Los atacantes pueden explotar el endpoint /frontend/get_article_suggestion/ mediante la creación de parámetros de búsqueda maliciosos para adivinar y recuperar progresivamente las credenciales de usuario a través de técnicas de inferencia basadas en booleanos.

29 Jan 2026, 15:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-01-29 15:16

Updated : 2026-05-26 14:16

NVD link : CVE-2020-37004

Mitre link : CVE-2020-37004

CVE.ORG link : CVE-2020-37004

JSON object : View

Products Affected

No product.

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')