CVE-2020-15300
First published: Wed Nov 18 2020(Updated: )
SuiteCRM through 7.11.13 has an Open Redirect in the Documents module via a crafted SVG document.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SalesAgility SuiteCRM | <=7.11.13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Open Redirect vulnerability in SuiteCRM?
The vulnerability ID for this Open Redirect vulnerability in SuiteCRM is CVE-2020-15300.
What is the severity of CVE-2020-15300?
The severity of CVE-2020-15300 is medium, with a CVSS score of 6.1.
How does the Open Redirect vulnerability work in SuiteCRM?
The Open Redirect vulnerability in SuiteCRM allows an attacker to redirect users to a malicious website by crafting a specially crafted SVG document in the Documents module.
Which version of SuiteCRM is affected by CVE-2020-15300?
SuiteCRM versions up to and including 7.11.13 are affected by CVE-2020-15300.
Is there a fix available for CVE-2020-15300?
Yes, it is recommended to update to a fixed version of SuiteCRM to address the Open Redirect vulnerability. Please refer to the vendor's website for the latest patches and updates.
- collector/nvd-index
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/references
- agent/severity
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/salesagility
- canonical/salesagility suitecrm
- version/salesagility suitecrm/7.11.13