13 matches found
CVE-2022-0754
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5...
CVE-2022-0756
Missing Authorization in GitHub repository salesagility/suitecrm prior to 7.12.5...
Authorization
Missing Authorization in GitHub repository salesagility/suitecrm prior to 7.12.5...
Authorization
Missing Authorization in GitHub repository salesagility/suitecrm prior to 7.12.5...
CVE-2022-0754 SQL Injection in salesagility/suitecrm
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5...
SalesAgility SuiteCRM 授权问题漏洞
Salesagility SalesAgility SuiteCRM is a suite of enterprise-grade, open source Customer Relationship Management CRM from Salesagility, UK. An authorization issue vulnerability exists in SalesAgility SuiteCRM, which stems from incorrect access control in the GitHub repository salesagility suitecrm...
PT-2022-13415 · Salesagility · Salesagility/Suitecrm
Name of the Vulnerable Software and Affected Versions: salesagility/suitecrm versions prior to 7.12.5 Description: The issue concerns improper access control in the salesagility/suitecrm GitHub repository. This allows for missing authorization, potentially leading to unauthorized access...
SuiteCRM SQL注入漏洞
SuiteCRM is a customer relationship management system from the SuiteCRM Suitecrm team. SuiteCRM has a security vulnerability that stems from an SQL injection in the GitHub repository salesagility suitecrm prior to 7.12.5...
SalesAgility SuiteCRM 安全漏洞
Salesagility SalesAgility SuiteCRM is a suite of enterprise-grade, open source Customer Relationship Management CRM from Salesagility UK. A security vulnerability exists in SalesAgility SuiteCRM that stems from incorrect authorization in the GitHub repository salesagility suitecrm prior to 7.12.5...
PT-2022-13414 · Salesagility · Suitecrm
Name of the Vulnerable Software and Affected Versions: salesagility/suitecrm versions prior to 7.12.5 Description: The issue is related to SQL Injection in the GitHub repository salesagility/suitecrm. Recommendations: For versions prior to 7.12.5, update to version 7.12.5 or later to resolve the...
Atlassian Confluence Webwork OGNL Injection
In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an authenticated user, and in some instances an unauthenticated user, to execute arbitrary code on a Confluence Server or Data Center instance. The vulnerable endpoints can be access...
CVE-2021-26084
In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before...
Confluence Server Webwork OGNL injection - CVE-2021-26084
This vulnerability is being actively exploited in the wild. Affected servers should be patched immediately. An OGNL injection vulnerability exists that allows an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The CVE ID is CVE-2021-26084. h4...