CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

CNVD•added 2017/11/07 12:0 a.m.•1 views

Zurmo Cross-Site Scripting Vulnerability

Zurmo is the United States Zurmo company's set of open source PHP-based customer relationship management system CRM. A cross-site scripting vulnerability exists in Zurmo version 3.2.1.57987acc3018. A remote attacker can exploit this vulnerability by sending a 'redirectUrl' parameter with a data:...

4.8CVSS6.5AI score0.00193EPSS

Exploits0References1

OSV•added 2017/11/06 8:29 a.m.•0 views

CVE-2017-16569

An Open URL Redirect issue exists in Zurmo 3.2.1.57987acc3018 via an http: URL in the redirectUrl parameter to app/index.php/meetings/default/createMeeting...

4.8CVSS5.8AI score

Exploits0References1

OSV•added 2017/11/06 8:29 a.m.•2 views

CVE-2017-15039

Cross-site scripting XSS exists in Zurmo 3.2.1.57987acc3018 via a data: URL in the redirectUrl parameter to app/index.php/meetings/default/createMeeting...

4.8CVSS5.8AI score0.00193EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by