Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
customer relationship management vulnerabilities and exploits
(subscribe to this query)
892
VMScore
CVE-2021-43130
An SQL Injection vulnerability exists in Sourcecodester Customer Relationship Management System (CRM) 1.0 via the username parameter in customer/login.php.
Customer Relationship Management System Project Customer Relationship Management System 1.0
890
VMScore
CVE-2014-8661
The SAP CRM Internet Sales module allows remote malicious users to execute arbitrary commands via unspecified vectors.
Sap Customer Relationship Management Internet Sales -
890
VMScore
CVE-2014-8669
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote malicious users to execute arbitrary code via unspecified vectors.
Sap Customer Relationship Management -
890
VMScore
CVE-2013-7095
The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
890
VMScore
CVE-2005-3466
Unspecified vulnerability in Enterprise CRM Sales in Oracle 8.81 up to 8.9 has unknown impact and attack vectors, as identified by Oracle Vuln# CRM01.
Oracle Peoplesoft Enterprise Customer Relationship Management
Oracle Peoplesoft Enterprise Customer Relationship Management 8.81
828
VMScore
CVE-2009-3737
The Oracle Siebel Option Pack for IE ActiveX control does not properly initialize memory that is used by the NewBusObj method, which allows remote malicious users to execute arbitrary code via a crafted HTML document.
Oracle Siebel Option Pack Ie Activex Control
760
VMScore
CVE-2005-4087
PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the beanFiles array parameter.
Sugarcrm Sugar Suite 3.5
Sugarcrm Sugar Suite 4.0 Beta
2 EDB exploits
694
VMScore
CVE-2020-14850
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Flex Fields). Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...
Oracle Customer Relationship Management Technical Foundation 12.1.3
Oracle Customer Relationship Management Technical Foundation
668
VMScore
CVE-2015-3979
Unspecified vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary code via unknown vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
668
VMScore
CVE-2015-3980
SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows malicious users to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2097534.
Sap Customer Relationship Management -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »