Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
customer relationship management vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2014-8669
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote malicious users to execute arbitrary code via unspecified vectors.
Sap Customer Relationship Management -
NA
CVE-2023-3058
A vulnerability was found in 07FLY CRM up to 1.2.0. It has been declared as problematic. This vulnerability affects unknown code of the component User Profile Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been discl...
07fly Customer Relationship Management
7.5
CVSSv2
CVE-2015-3979
Unspecified vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary code via unknown vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
7.5
CVSSv2
CVE-2015-3980
SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
5
CVSSv2
CVE-2014-1962
Gwsync in SAP CRM 7.02 EHP 2 allows remote malicious users to obtain sensitive information via unspecified vectors, related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
NA
CVE-2022-2924
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.3.
Yetiforce Yetiforce Customer Relationship Management
NA
CVE-2022-1340
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0.
Yetiforce Yetiforce Customer Relationship Management
10
CVSSv2
CVE-2013-7095
The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
NA
CVE-2022-3004
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0.
Yetiforce Yetiforce Customer Relationship Management
NA
CVE-2022-2885
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0.
Yetiforce Yetiforce Customer Relationship Management
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »