Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:52 a.m.11 views

CVE-2024-36415

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in uploaded file verification in products allows for remote code execution. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.1CVSS7.7AI score0.00882EPSS
Exploits0References1
OSV
OSV
added 2024/06/12 7:37 a.m.10 views

BIT-SUITECRM-2024-36415 SuiteCRM Improper Control of Filename for Include Statement in PHP and Unrestricted Upload of File with Dangerous content leads to authenticated remote code execution

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in uploaded file verification in products allows for remote code execution. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.1CVSS9.3AI score0.00882EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/10 7:49 p.m.18 views

CVE-2024-36415 SuiteCRM Improper Control of Filename for Include Statement in PHP and Unrestricted Upload of File with Dangerous content leads to authenticated remote code execution

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in uploaded file verification in products allows for remote code execution. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.1CVSS0.00882EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/10 12:0 a.m.4 views

PT-2024-26982 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.4 SuiteCRM versions prior to 8.6.1 Description: The issue is related to a vulnerability in uploaded file verification in products, which allows for remote code execution. This is a critical issue that can be...

9.1CVSS8AI score0.00882EPSS
Exploits0References8
Rows per page
Query Builder