CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

Positive Technologies•added 2026/06/16 12:0 a.m.•13 views

PT-2026-49992

Name of the Vulnerable Software and Affected Versions Oracle Siebel CRM versions 17.0 through 26.5 Description An issue exists in the EAI component of the Siebel CRM Integration product. A low privileged attacker with network access via HTTP can exploit this flaw to compromise the system,...

9CVSS5.9AI score0.00403EPSS

Exploits0References5

Tenable Nessus•added 2026/04/23 12:0 a.m.•14 views

Oracle Siebel Server <= 26.2 (April 2026 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2026 CPU advisory. - Vulnerability in the Siebel CRM Integration product of Oracle Siebel CRM component: REST Jettison. Supported versions that are affected are...

8.8CVSS6.5AI score0.60841EPSS

Exploits11References31

RedhatCVE•added 2026/01/09 12:36 p.m.•16 views

CVE-2023-49954

The CRM Integration in 3CX before 18.0.9.23 and 20 before 20.0.0.1494 allows SQL Injection via a first name, search string, or email address...

9.8CVSS8.2AI score0.02239EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:16 a.m.•5 views

CVE-2025-14901

The Bit Form – Contact Form Plugin plugin for WordPress is vulnerable to unauthorized workflow execution due to missing authorization in the triggerWorkFlow function in all versions up to, and including, 2.21.6. This is due to a logic flaw in the nonce verification where the security check only...

6.5CVSS5.8AI score0.0035EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2015-0377

Malware in sbrugna...

3.5CVSS5.6AI score0.01086EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-53849

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.02239EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•19 views

EUVD-2023-29863

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00256EPSS

Exploits0References1

Patchstack•added 2025/04/04 1:34 p.m.•5 views

WordPress Privyr CRM plugin <= 1.0.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Privyr CRM Integration versions = 1.0.2...

5.4CVSS8.4AI score0.00426EPSS

Exploits0Affected Software1

Cvelist•added 2025/04/01 2:51 p.m.•8 views

CVE-2025-31821 WordPress Integration of Zoho CRM and Contact Form 7 plugin <= 1.0.6 - Open Redirection Vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in formsintegrations Integration of Zoho CRM and Contact Form 7 allows Phishing. This issue affects Integration of Zoho CRM and Contact Form 7: from n/a through 1.0.6...

4.7CVSS0.00378EPSS

Exploits0References1

CVE•added 2025/04/01 2:51 p.m.•44 views

CVE-2025-31821

CVE-2025-31821 describes an Open Redirect vulnerability in the plugin Integration of Zoho CRM and Contact Form 7 (versions up to 1.0.6). The CVSSv3.1 base score is 4.7 (Medium) with a network attack vector, low attack complexity, no privileges, and user interaction required. According to the prim...

4.7CVSS7.1AI score0.00378EPSS

Exploits0References1

Vulnrichment•added 2025/03/27 10:54 a.m.•4 views

CVE-2025-30810 WordPress Lead Form Data Collection to CRM plugin <= 3.0.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Smackcoders Inc., Lead Form Data Collection to CRM wp-leads-builder-any-crm allows Blind SQL Injection.This issue affects Lead Form Data Collection to CRM: from n/a through = 3.0.1...

8.5CVSS7.3AI score0.00412EPSS

Exploits0References1

Cvelist•added 2025/03/27 10:54 a.m.•12 views

CVE-2025-30810 WordPress Lead Form Data Collection to CRM plugin <= 3.0.1 - SQL Injection vulnerability

8.5CVSS0.00412EPSS

Exploits0References1

Tenable Nessus•added 2024/10/17 12:0 a.m.•17 views

Oracle Siebel CRM <= 24.7 (October 2024 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2024 CPU advisory. - Vulnerability in the Siebel CRM Integration product of Oracle Siebel CRM component: EAI Apache Tomcat. Supported versions that are affected are...

7.5CVSS7.5AI score0.23072EPSS

Exploits1References4

BDU FSTEC•added 2024/05/06 12:0 a.m.•3 views

The vulnerability relates to the implementation of the CRM system integration software for message and video conferencing 3CX. This allows a hacker to execute arbitrary SQL queries.

The vulnerability of the implementation of the CRM system’s software for message and video conferencing 3CX relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

10CVSS8.1AI score0.02239EPSS

Exploits0References3Affected Software1

WPVulnDB•added 2024/05/03 12:0 a.m.•18 views

WP Fusion Lite – Marketing Automation and CRM Integration for WordPress < 3.43.0 - Information Exposure

Description The WP Fusion Lite – Marketing Automation and CRM Integration for WordPress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.42.10 through publicly exposed log files. This makes it possible for unauthenticated attackers to vi...

4.3CVSS6.5AI score0.00534EPSS

Exploits0References1Affected Software1