10 matches found
CVE-2026-29104
SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authenticated administrator can bypass intended file ty...
CVE-2026-33289 SuiterCRM has LDAP Filter Injection in Authentication Module
SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, an LDAP Injection vulnerability exists in the SuiteCRM authentication flow. The application fails to properly sanitize user-supplied input before embedding i...
CVE-2026-29099
SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, the retrieve function in include/OutboundEmail/OutboundEmail.php fails to properly neutralize the user controlled $id parameter. It is assumed that the...
EUVD-2020-29634
Malware in sbrugna...
EUVD-2019-7416
Malware in sbrugna...
EUVD-2024-36066
Malicious code in bioql PyPI...
EUVD-2023-58381
Malicious code in bioql PyPI...
EUVD-2023-58380
Malicious code in bioql PyPI...
PT-2024-31596 · Suitecrm · Suitecrm
Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.5 SuiteCRM versions prior to 8.6.2 Description: The issue is related to insufficient access control checks in SuiteCRM, an open-source customer relationship management system. This allows a threat actor to dele...
PT-2023-32534 · Suitecrm · Suitecrm
Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.2 SuiteCRM versions prior to 7.12.14 SuiteCRM versions prior to 8.4.2 Description: The issue is related to Cross-site Scripting XSS - Reflected, which occurs when an application includes user input in its...