3 matches found
CVE-2021-45897
SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows remote code execution...
CVE-2021-45897
SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows remote code execution...
CVE-2021-45897
Summary (CVE-2021-45897) : SuiteCRM versions prior to 7.12.3 and 8.x prior to 8.0.2 are affected by a remote code execution (RCE) vulnerability. The issue stems from the EmailTemplates / Notes attachment handling, where an authenticated user can upload a PHP webshell via an attachment and trigger...