Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-23899

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00379EPSS
Exploits0References2
NVD
NVDadded 2025/08/07 12:15 a.m.5 views

CVE-2025-54788

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions and below, the InboundEmail module allows the arbitrary execution of queries in the backend database, leading to SQL injection. This can have wide-reaching implications on...

8.8CVSS0.00379EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2025/08/07 12:0 a.m.7 views

The vulnerability of the InboundEmail module in the SuiteCRM customer relationship management system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the InboundEmail module in the SuiteCRM customer relationship management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the...

9CVSS5.6AI score0.00379EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2025/08/06 11:48 p.m.32 views

CVE-2025-54788

CVE-2025-54788 corresponds to a SQL injection in the SuiteCRM InboundEmail module. The issue allows arbitrary backend SQL queries, impacting confidentiality, integrity, and availability by enabling data retrieval, modification, or deletion. Affected: SuiteCRM (InboundEmail module) in versions pri...

8.8CVSS7.3AI score0.00379EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/08/06 11:48 p.m.5 views

CVE-2025-54788 SuiteCRM: Authenticated Blind SQL Injection in InboundEmail module

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions and below, the InboundEmail module allows the arbitrary execution of queries in the backend database, leading to SQL injection. This can have wide-reaching implications on...

8.8CVSS7.2AI score0.00379EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/08/06 11:48 p.m.7 views

CVE-2025-54788 SuiteCRM: Authenticated Blind SQL Injection in InboundEmail module

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions and below, the InboundEmail module allows the arbitrary execution of queries in the backend database, leading to SQL injection. This can have wide-reaching implications on...

8.8CVSS0.00379EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/08/06 12:0 a.m.5 views

PT-2025-32235 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.7 Description: SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. The InboundEmail module allows the arbitrary execution of queries in the backend database,...

9CVSS7.4AI score0.00379EPSS
Exploits0References12
Packet Storm
Packet Stormadded 2019/10/11 12:0 a.m.298 views

SugarCRM 9.0.1 Broken Access Controls

---------------------------------------------------------------- SugarCRM = 9.0.1 Multiple Broken Access Control Vulnerabilities ---------------------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Version 9.0.1 and prior versions, 8.0.3...

0.3AI score
Exploits0
Rows per page
Query Builder