2 matches found
CVE-2025-1618 vTiger CRM index.php cross site scripting
A vulnerability has been found in vTiger CRM 6.4.0/6.5.0 and classified as problematic. This vulnerability affects unknown code of the file /modules/Mobile/index.php. The manipulation of the argument operation leads to cross site scripting. The attack can be initiated remotely. The exploit has be...
CVE-2025-1618
CVE-2025-1618 affects vtiger CRM 6.4.0/6.5.0. The vulnerability resides in the /modules/Mobile/index.php script where manipulating the _operation parameter triggers cross-site scripting. Exploitation can be remote, and public disclosures exist. Upgrading to vtiger CRM 7.0 is cited as the fix; no ...