Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
customer relationship management vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2021-43130
An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in customer/login.php.
Customer Relationship Management System Project Customer Relationship Management System 1.0
10
CVSSv2
CVE-2014-8661
The SAP CRM Internet Sales module allows remote malicious users to execute arbitrary commands via unspecified vectors.
Sap Customer Relationship Management Internet Sales -
10
CVSSv2
CVE-2014-8669
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote malicious users to execute arbitrary code via unspecified vectors.
Sap Customer Relationship Management -
10
CVSSv2
CVE-2013-7095
The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
10
CVSSv2
CVE-2005-3466
Unspecified vulnerability in Enterprise CRM Sales in Oracle 8.81 up to 8.9 has unknown impact and attack vectors, as identified by Oracle Vuln# CRM01.
Oracle Peoplesoft Enterprise Customer Relationship Management
Oracle Peoplesoft Enterprise Customer Relationship Management 8.81
9.3
CVSSv2
CVE-2009-3737
The Oracle Siebel Option Pack for IE ActiveX control does not properly initialize memory that is used by the NewBusObj method, which allows remote malicious users to execute arbitrary code via a crafted HTML document.
Oracle Siebel Option Pack Ie Activex Control
7.8
CVSSv2
CVE-2020-14850
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Flex Fields). Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
Oracle Customer Relationship Management Technical Foundation 12.1.3
Oracle Customer Relationship Management Technical Foundation
7.5
CVSSv2
CVE-2015-3979
Unspecified vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary code via unknown vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
7.5
CVSSv2
CVE-2015-3980
SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
7.5
CVSSv2
CVE-2007-3869
Multiple unspecified vulnerabilities in the Customer Relationship Management Online Marketing component in Oracle PeopleSoft Enterprise 8.9 Bundle 26 and 9.0 Bundle 7 allow remote authenticated users to have an unknown impact, aka (1) PSE04 and (2) PSE05.
Oracle Peoplesoft Enterprise 8.9
Oracle Peoplesoft Enterprise 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »