Filters
Versions
SalesAgility SuiteCRMAuthenticated XSS in "Publish Key" Field Allowing Unauthorized Administrator User Creation in SuiteCRM
5.4
First published (updated )
SalesAgility SuiteCRMRCE in ModuleBuilder in SuiteCRM
8.8
First published (updated )
SalesAgility SuiteCRMAuthenticated Blind SQL Injection in DeleteRelationShip in SuiteCRM
8.8
First published (updated )
SalesAgility SuiteCRMImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in SuiteCRM
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMAuthenticated SQL injection in AM_ProjectTemplates controller in SuiteCRM
8.8
First published (updated )
SalesAgility SuiteCRMSuiteCRM has wrong deletion permission checks on API delete call
7.7
First published (updated )
SalesAgility SuiteCRMSuiteCRM-Core Host Header Injection in /legacy
6.1
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated RCE using connectors
8.8
First published (updated )
SalesAgility SuiteCRMSuiteCRM v4 API Excessive log data DOS
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM Stored XSS Vulnerability Allows Code Execution via Malicious iFrame
First published (updated )
SalesAgility SuiteCRMSuiteCRM Improper Control of Filename for Include Statement in PHP and Unrestricted Upload of File with Dangerous content leads to authenticated remote code execution
9.1
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated Server-Side Request Forgery
7.7
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated Reflected Cross-Site Scripting
8.9
First published (updated )
SalesAgility SuiteCRMSuiteCRM unauthenticated SQL Injection
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM authenticated SQL Injection in EmailUIAjax displayView controller
9.6
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated SQL Injection in EmailUIAjax messages count controller
9.6
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated SQL Injection in TreeData entrypoint
9.6
First published (updated )
SalesAgility SuiteCRMSuiteCRM authenticated SQL Injection in Alerts
9.6
First published (updated )
SalesAgility SuiteCRMSuiteCRM unauthenticated user password reset on php7
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM has Unauthenticated Graphql Introspection Enabled
5.3
First published (updated )
SalesAgility SuiteCRMCode Injection in salesagility/suitecrm
8.8
EPSS
0.05%
First published (updated )
SalesAgility SuiteCRMPath Traversal: '\..\filename' in salesagility/suitecrm
8.8
EPSS
0.05%
First published (updated )
SalesAgility SuiteCRMCross-site Scripting (XSS) - Reflected in salesagility/suitecrm
6.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMUnrestricted Upload of File with Dangerous Type in salesagility/suitecrm
5.4
EPSS
0.04%
First published (updated )
SalesAgility SuiteCRMCode Injection in salesagility/suitecrm
9.8
EPSS
0.09%
First published (updated )
SalesAgility SuiteCRMCode Injection in salesagility/suitecrm
8.8
EPSS
0.05%
First published (updated )
SalesAgility SuiteCRMServer-Side Request Forgery (SSRF) in salesagility/suitecrm
EPSS
0.04%
First published (updated )
SalesAgility SuiteCRMImproper Access Control in salesagility/suitecrm
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMCross-site Scripting (XSS) - Stored in salesagility/suitecrm
8.9
First published (updated )
SalesAgility SuiteCRMSQL Injection in salesagility/suitecrm
9.1
First published (updated )
SalesAgility SuiteCRMCross-Site Request Forgery (CSRF) in salesagility/suitecrm-core
8.8
First published (updated )
SalesAgility SuiteCRMCross-site Scripting (XSS) - Stored in salesagility/suitecrm-core
7.6
First published (updated )
SalesAgility SuiteCRMPath Traversal: '\..\filename' in salesagility/suitecrm
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into …
7.2
First published (updated )
SalesAgility SuiteCRMSuiteCRM through 7.12.1 and 8.x through 8.0.1 allows Remote Code Execution. Authenticated users with…
8.8
First published (updated )
SalesAgility SuiteCRMSQL Injection in salesagility/suitecrm
7.1
First published (updated )
SalesAgility SuiteCRMMissing Authorization in salesagility/suitecrm
7.1
First published (updated )
SalesAgility SuiteCRMMissing Authorization in salesagility/suitecrm
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserialization that can lead to remote code…
9.8
First published (updated )
SalesAgility SuiteCRMSuiteCRM before 7.12.3 and 8.x before 8.0.2 allows local file inclusion.
9.8
First published (updated )
SalesAgility SuiteCRMSuiteCRM before 7.12.3 and 8.x before 8.0.2 allows remote code execution.
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
SalesAgility SuiteCRMSuiteCRM 7.10.x before 7.10.33 and 7.11.x before 7.11.22 is vulnerable to privilege escalation.
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.