Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
salesagility suitecrm vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-6124
Server-Side Request Forgery (SSRF) in GitHub repository salesagility/suitecrm before 7.14.2, 8.4.2, 7.12.14.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
8.8
CVSSv3
CVE-2023-6125
Code Injection in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
9.8
CVSSv3
CVE-2023-6126
Code Injection in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
5.4
CVSSv3
CVE-2023-6127
Unrestricted Upload of File with Dangerous Type in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
5.4
CVSSv3
CVE-2023-6128
Cross-site Scripting (XSS) - Reflected in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
8.8
CVSSv3
CVE-2023-6130
Path Traversal: '\..\filename' in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
8.8
CVSSv3
CVE-2023-6131
Code Injection in GitHub repository salesagility/suitecrm before 7.14.2, 7.12.14, 8.4.2.
Salesagility Suitecrm 8.4.1
Salesagility Suitecrm 8.4.0
Salesagility Suitecrm 7.14.0
Salesagility Suitecrm
Salesagility Suitecrm 7.14.1
8.8
CVSSv3
CVE-2021-45041
SuiteCRM prior to 7.12.2 and 8.x prior to 8.0.1 allows authenticated SQL injection via the Tooltips action in the Project module, involving resource_id and start_date.
Salesagility Suitecrm
Salesagility Suitecrm 8.0
Salesagility Suitecrm 8.0.0
1 Github repository
9.8
CVSSv3
CVE-2021-45898
SuiteCRM prior to 7.12.3 and 8.x prior to 8.0.2 allows local file inclusion.
Salesagility Suitecrm
Salesagility Suitecrm 8.0
9.8
CVSSv3
CVE-2021-45899
SuiteCRM prior to 7.12.3 and 8.x prior to 8.0.2 allows PHAR deserialization that can lead to remote code execution.
Salesagility Suitecrm
Salesagility Suitecrm 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »