6.5
CVSSv2

CVE-2020-8800

Published: 13/02/2020 Updated: 19/02/2020
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

SuiteCRM up to and including 7.11.11 allows EmailsControllerActionGetFromFields PHP Object Injection.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

salesagility suitecrm

Mailing Lists

SuiteCRM versions 71111 and below suffer from a second-order php object injection vulnerability ...
--------------------------------------------------------------------- SuiteCRM <= 71111 Second-Order PHP Object Injection Vulnerabilities --------------------------------------------------------------------- [-] Software Link: suitecrmcom/ [-] Affected Versions: Version 71111 and prior versions [-] Vulnerabilities Descripti ...