2 matches found
CVE-2021-41596
SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. An attacker can partially include arbitrary files via the importFile parameter of the RefreshMapping import functionality...
CVE-2021-41596
Summary of CVE-2021-41596 : SuiteCRM before 7.10.33 and before 7.11.22 is affected by a directory traversal vulnerability in the RefreshMapping import functionality. An attacker can leverage the importFile parameter to partially include arbitrary files, resulting in information disclosure. The is...