CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2024/03/06 11:7 a.m.•14 views

BIT-SUITECRM-2022-27474

SuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field...

7.2CVSS7.3AI score0.03956EPSS

Exploits1References3

NVD•added 2022/04/15 1:15 p.m.•13 views

CVE-2022-27474

SuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field...

7.2CVSS0.03956EPSS

Exploits1References2

OSV•added 2022/04/15 1:15 p.m.•8 views

CVE-2022-27474

SuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field...

7.2CVSS8AI score

Exploits0References2

Prion•added 2022/04/15 1:15 p.m.•28 views

Remote code execution

SuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field...

6.5CVSS7.3AI score0.03956EPSS

Exploits1References2Affected Software1

CVE•added 2022/04/15 12:55 p.m.•76 views

CVE-2022-27474

SuiteCRM v7.11.23 is affected by CVE-2022-27474, enabling remote code execution via a crafted payload injected into the FirstName field. The issue originates from improper handling/validation of externally entered data within a code path that builds a code segment, allowing an attacker to execute...

7.2CVSS7.3AI score0.03956EPSS

Exploits1References2Affected Software1