SuiteCRM is a customer relationship management system from the SuiteCRM (Suitecrm) team.SuiteCRM has a cross-site request forgery vulnerability in versions prior to 7.11.21, which stems from the software’s lack of token validation for cross-site request forgery. If the ZIP archive file contains PHP files, remote code can be executed via the UpgradeWizard function. No detailed vulnerability details are currently available.
CPE | Name | Operator | Version |
---|---|---|---|
SuiteCRM SuiteCRM >=7.10.0, | lt | 7.10.35 | |
SuiteCRM SuiteCRM >=7.12, | lt | 7.12.2 |