Lucene search
K

4 matches found

EUVD
EUVD
added 2026/03/19 10:46 p.m.8 views

EUVD-2026-13357

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, the retrieve function in include/OutboundEmail/OutboundEmail.php fails to properly neutralize the user controlled $id parameter. It is assumed that the...

8.8CVSS5.9AI score0.00259EPSS
Exploits0References2
OSV
OSV
added 2026/03/19 10:46 p.m.4 views

CVE-2026-29099 SuiteCRM has Authenticated Blind SQL Injection in OutboundEmail Legacy Functionality.

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, the retrieve function in include/OutboundEmail/OutboundEmail.php fails to properly neutralize the user controlled $id parameter. It is assumed that the...

8.8CVSS6AI score0.00259EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/19 10:46 p.m.23 views

CVE-2026-29099 SuiteCRM has Authenticated Blind SQL Injection in OutboundEmail Legacy Functionality.

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, the retrieve function in include/OutboundEmail/OutboundEmail.php fails to properly neutralize the user controlled $id parameter. It is assumed that the...

8.8CVSS0.00259EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/02/13 4:15 p.m.4 views

CVE-2020-8804

SuiteCRM through 7.11.10 allows SQL Injection via the SOAP API, the EmailUIAjax interface, or the MailMerge module...

6.5CVSS5.8AI score0.01385EPSS
Exploits2References4
Rows per page
Query Builder