Lucene search
K

6 matches found

CVE
CVE
added 2025/11/07 11:59 p.m.25 views

CVE-2025-64488

The CVE-2025-64488 affects SuiteCRM. An attacker can craft a malicious call_id to alter SQL query logic or inject arbitrary SQL, leading to unauthorized data access, data exfiltration, and potentially full database compromise. Affected versions: SuiteCRM 7.14.7 and earlier, and 8.0.0-beta.1 throu...

8.8CVSS7AI score0.00384EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/11/07 11:59 p.m.8 views

CVE-2025-64488 SuiteCRM: Authenticated SQL Injection Possible in Reschedule Call Module

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.7 and below and 8.0.0-beta.1 through 8.9.0 8.0.0-beta.1, an attacker can craft a malicious callid that alters the logic of the SQL query or injects arbitrary SQL. An attack can...

8.6CVSS0.00384EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/07 11:59 p.m.4 views

CVE-2025-64488 SuiteCRM: Authenticated SQL Injection Possible in Reschedule Call Module

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.7 and below and 8.0.0-beta.1 through 8.9.0 8.0.0-beta.1, an attacker can craft a malicious callid that alters the logic of the SQL query or injects arbitrary SQL. An attack can...

8.6CVSS6.9AI score0.00384EPSS
Exploits0References3
OSV
OSV
added 2025/11/07 11:59 p.m.6 views

CVE-2025-64488 SuiteCRM: Authenticated SQL Injection Possible in Reschedule Call Module

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. In versions 7.14.7 and below and 8.0.0-beta.1 through 8.9.0 8.0.0-beta.1, an attacker can craft a malicious callid that alters the logic of the SQL query or injects arbitrary SQL. An attack can...

8.6CVSS7.4AI score0.00384EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2023-59816

Malicious code in bioql PyPI...

6.3AI score0.00112EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/09/11 11:23 p.m.4 views

SUSE CVE-2025-39782

In the Linux kernel, the following vulnerability has been resolved: jbd2: prevent softlockup in jbd2logdocheckpoint Both jbd2logdocheckpoint and jbd2journalshrinkcheckpointlist periodically release jlistlock after processing a batch of buffers to avoid long hold times on the jlistlock. However,...

5.5CVSS6.3AI score0.00117EPSS
Exploits0References23
Rows per page
Query Builder