Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
customer relationship management vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-2829
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0.
Yetiforce Yetiforce Customer Relationship Management
5
CVSSv2
CVE-2014-1962
Gwsync in SAP CRM 7.02 EHP 2 allows remote malicious users to obtain sensitive information via unspecified vectors, related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
NA
CVE-2022-1340
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0.
Yetiforce Yetiforce Customer Relationship Management
4.3
CVSSv2
CVE-2022-1411
Unrestructed file upload in GitHub repository yetiforcecompany/yetiforcecrm before 6.4.0. Attacker can send malicious files to the victims is able to retrieve the stored data from the web application without that data being made safe to render in the browser and steals victim...
Yetiforce Yetiforce Customer Relationship Management
NA
CVE-2023-5020
A vulnerability, which was classified as critical, has been found in 07FLY CRM V2. This issue affects some unknown processing of the file /index.php/sysmanage/Login/login_auth/ of the component Administrator Login Page. The manipulation of the argument account leads to sql inject...
07fly Customer Relationship Management 2.0
NA
CVE-2023-33986
SAP CRM ABAP (Grantor Management) - versions 700, 701, 702, 712, 713, 714, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integr...
Sap Customer Relationship Management Abap 430
10
CVSSv2
CVE-2014-8661
The SAP CRM Internet Sales module allows remote malicious users to execute arbitrary commands via unspecified vectors.
Sap Customer Relationship Management Internet Sales -
5
CVSSv2
CVE-2020-14774
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Preferences). Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access vi...
Oracle Customer Relationship Management Technical Foundation
5.5
CVSSv2
CVE-2020-14823
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Preferences). Supported versions that are affected are 12.2.3 - 12.2.10. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise...
Oracle Customer Relationship Management Technical Foundation
5.8
CVSSv2
CVE-2020-2881
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Preferences). Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Or...
Oracle Customer Relationship Management Technical Foundation
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »