4 matches found
CVE-2021-45903
A persistent cross-site scripting XSS issue in the web interface of SuiteCRM before 7.10.35, and 7.11.x and 7.12.x before 7.12.2, allows a remote attacker to introduce arbitrary JavaScript via attachments upload, a different vulnerability than CVE-2021-39267 and CVE-2021-39268...
CVE-2021-45903
creationtimestamp| type| source ---|---|--- 2021-12-28 16:24:43+00:00| seen| https://t.me/cibsecurity/34709...
CVE-2021-45903
A persistent cross-site scripting XSS issue in the web interface of SuiteCRM before 7.10.35, and 7.11.x and 7.12.x before 7.12.2, allows a remote attacker to introduce arbitrary JavaScript via attachments upload, a different vulnerability than CVE-2021-39267 and CVE-2021-39268...
CVE-2021-45903
A persistent cross-site scripting (XSS) vulnerability in SuiteCRM’s web interface enables remote injection of arbitrary JavaScript via attachments upload. Affected versions are SuiteCRM before 7.10.35, and 7.11.x, and 7.12.x before 7.12.2. Root cause involves inadequate input handling/sanitizatio...