SuiteCRM prior to 7.2.3 allows remote malicious users to execute arbitrary code.
salesagility suitecrm