Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
catalystconnect catalyst connect zoho crm client portal vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2022-44629
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Catalyst Connect Catalyst Connect Zoho CRM Client Portal plugin <= 2.0.0 versions.
Catalystconnect Catalyst Connect Zoho Crm Client Portal
6.1
CVSSv3
CVE-2023-0588
The Catalyst Connect Zoho CRM Client Portal WordPress plugin prior to 2.1.0 does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high-privilege users such as admin.
Catalystconnect Zoho Crm Client Portal
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started