Lucene search
K

377 matches found

Vulnrichment
Vulnrichment
added 2025/10/14 2:38 p.m.2 views

CVE-2025-59428 EspoCRM allows arbitrary user creation via stored SVG injection and CSRF

EspoCRM is an open source customer relationship management application. In versions before 9.1.9, a vulnerability allows arbitrary user creation, including administrative accounts, through a combination of stored SVG injection and lack of CSRF protection. An attacker with Knowledge Base edit...

5.4CVSS6.4AI score0.0013EPSS
Exploits1References1
CVE
CVE
added 2025/10/14 2:38 p.m.18 views

CVE-2025-59428

CVE-2025-59428 affects EspoCRM up to version 9.1.8. A combination of stored SVG injection and missing CSRF protection allows an attacker with Knowledge Base edit permissions to cause arbitrary user creation (including admin accounts) by luring an authenticated user to click a malicious SVG link t...

5.4CVSS6.4AI score0.0013EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/10/14 2:38 p.m.3 views

CVE-2025-59428 EspoCRM allows arbitrary user creation via stored SVG injection and CSRF

EspoCRM is an open source customer relationship management application. In versions before 9.1.9, a vulnerability allows arbitrary user creation, including administrative accounts, through a combination of stored SVG injection and lack of CSRF protection. An attacker with Knowledge Base edit...

5.4CVSS6.8AI score0.0013EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.3 views

EspoCRM 跨站请求伪造漏洞

EspoCRM is an open source web-based customer relationship management CRM system from EspoCRM Open Source. The system provides features such as sales automation, community and customer support. A cross-site request forgery vulnerability exists in EspoCRM versions prior to 9.1.9, which stems from...

5.4CVSS6.9AI score0.0013EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.5 views

PT-2025-41935

Name of the Vulnerable Software and Affected Versions EspoCRM versions prior to 9.1.9 Description EspoCRM is a customer relationship management application. A flaw allows the creation of arbitrary user accounts, including those with administrative privileges. This is achieved through a combinatio...

5.4CVSS6.5AI score0.0013EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7836

Malware in sbrugna...

4.3CVSS6.2AI score0.02174EPSS
Exploits3References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9057

Malware in sbrugna...

5.4CVSS5.5AI score0.00632EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5567

Malware in sbrugna...

8.8CVSS8.8AI score0.01263EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-5068

Malware in sbrugna...

6.1CVSS6.3AI score0.0114EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5710

Malware in sbrugna...

5.4CVSS5.5AI score0.0108EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9056

Malware in sbrugna...

5.4CVSS5.5AI score0.00674EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5549

Malware in sbrugna...

6.1CVSS6.3AI score0.01327EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5550

Malware in sbrugna...

6.1CVSS6.3AI score0.01327EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-7835

Malware in sbrugna...

5CVSS6.2AI score0.02858EPSS
Exploits3References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-5707

Malware in sbrugna...

5.4CVSS5.5AI score0.01089EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5565

Malware in sbrugna...

6.1CVSS6.3AI score0.00865EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5711

Malware in sbrugna...

5.4CVSS5.5AI score0.0108EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5548

Malware in sbrugna...

6.1CVSS6.3AI score0.01327EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5708

Malware in sbrugna...

5.4CVSS5.5AI score0.0108EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-8169

Malware in sbrugna...

3.5CVSS6.4AI score0.00802EPSS
Exploits1References2
Rows per page
Query Builder