Lucene search
+L

4 matches found

ripstech
ripstech
added 2019/08/20 11:0 a.m.72 views

Breaking Into Your Company's Internal Network - SuiteCRM 7.11.4

As part of our efforts to make the open source web application space more secure we scanned SuiteCRM 7.11.4 with our static code analysis tool RIPS and we detected multiple critical vulnerabilities. Among them is a SQL Injection that can be exploited as a normal user CVE-2019-12598, which can be...

7.5CVSS10.4AI score0.0106EPSS
Exploits0
openvas
openvas
added 2019/06/12 12:0 a.m.100 views

SuiteCRM 7.8.x < 7.8.30, 7.10.x < 7.10.17, 7.11.x < 7.11.5 Multiple SQL Injection Vulnerabilities

SuiteCRM is prone to multiple SQL injection vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10AI score
Exploits0References3
osv
osv
added 2019/06/07 6:29 p.m.15 views

CVE-2019-12598

SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection issue 1 of 3...

9.8CVSS8.1AI score
Exploits0References1
cve
cve
added 2019/06/07 5:36 p.m.63 views

CVE-2019-12598

CVE-2019-12598 affects SuiteCRM: 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5. The issue is a SQL injection vulnerability in SuiteCRM components (issue 1 of 3). Exploitation could allow remote attackers to execute arbitrary SQL commands. Connected sources indicate the vuln...

9.8CVSS9.9AI score0.0106EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder