5 matches found
CVE-2020-8801
SuiteCRM through 7.11.11 allows PHAR Deserialization...
CVE-2020-8801
SuiteCRM through 7.11.11 allows PHAR Deserialization...
CVE-2020-8801
CVE-2020-8801 affects SuiteCRM up to version 7.11.11. It enables Phar Deserialization via phar:// streams, allowing PHP object injection and potential code execution. Some vectors require elevated rights (e.g., admin). Remediation: upgrade to SuiteCRM 7.11.12 or later.
CVE-2020-8801
SuiteCRM through 7.11.11 allows PHAR Deserialization...
SuiteCRM 7.11.11 Phar Deserialization
----------------------------------------------------------------- SuiteCRM = 7.11.11 Multiple Phar Deserialization Vulnerabilities ----------------------------------------------------------------- - Software Link: https://suitecrm.com/ - Affected Versions: Version 7.11.11 and prior versions. -...