Show filters
87 Total Results
Displaying 81-87 of 87
Sort by:
Attacker Value
Unknown
CVE-2019-12600
Disclosure Date: June 07, 2019 (last updated November 27, 2024)
SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 2 of 3).
0
Attacker Value
Unknown
CVE-2019-12601
Disclosure Date: June 07, 2019 (last updated November 27, 2024)
SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 3 of 3).
0
Attacker Value
Unknown
CVE-2018-20816
Disclosure Date: April 05, 2019 (last updated November 27, 2024)
An XSS combined with CSRF vulnerability discovered in SalesAgility SuiteCRM 7.x before 7.8.24 and 7.10.x before 7.10.11 leads to cookie stealing, aka session hijacking. This issue affects the "add dashboard pages" feature where users can receive a malicious attack through a phished URL, with script executed.
0
Attacker Value
Unknown
CVE-2019-6506
Disclosure Date: April 02, 2019 (last updated November 27, 2024)
SuiteCRM before 7.8.28, 7.9.x and 7.10.x before 7.10.15, and 7.11.x before 7.11.3 allows SQL Injection.
0
Attacker Value
Unknown
CVE-2018-15606
Disclosure Date: September 26, 2018 (last updated November 27, 2024)
An XSS issue was discovered in SalesAgility SuiteCRM 7.x before 7.8.21 and 7.10.x before 7.10.8, related to phishing an error message.
0
Attacker Value
Unknown
CVE-2015-5948
Disclosure Date: September 06, 2017 (last updated November 26, 2024)
Race condition in SuiteCRM before 7.2.3 allows remote attackers to execute arbitrary code. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-5947.
0
Attacker Value
Unknown
CVE-2015-5947
Disclosure Date: September 06, 2017 (last updated November 26, 2024)
SuiteCRM before 7.2.3 allows remote attackers to execute arbitrary code.
0
