Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Nuclei
Nucleiadded 2026/05/27 3:54 a.m.203 views

SuiteCRM - SQL Injection

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in events response entry point allows for a SQL injection attack. Versions 7.14.4 and 8.6.1 contain a fix for this issue. id: CVE-2024-36412 info: name: SuiteC...

10CVSS7.3AI score0.93636EPSS
Exploits1References2
OSV
OSVadded 2024/06/12 7:37 a.m.10 views

BIT-SUITECRM-2024-36415 SuiteCRM Improper Control of Filename for Include Statement in PHP and Unrestricted Upload of File with Dangerous content leads to authenticated remote code execution

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in uploaded file verification in products allows for remote code execution. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.1CVSS9.3AI score0.03998EPSS
Exploits0References2
NVD
NVDadded 2024/06/10 5:16 p.m.15 views

CVE-2024-36408

SuiteCRM is an open-source Customer Relationship Management CRM software application. In versions prior to 7.14.4 and 8.6.1, poor input validation allows for SQL Injection in the Alerts controller. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.6CVSS0.00286EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/06/10 4:46 p.m.19 views

CVE-2024-36408 SuiteCRM authenticated SQL Injection in Alerts

SuiteCRM is an open-source Customer Relationship Management CRM software application. In versions prior to 7.14.4 and 8.6.1, poor input validation allows for SQL Injection in the Alerts controller. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

9.6CVSS7.9AI score0.00286EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/06/10 12:0 a.m.3 views

PT-2024-26982 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.4 SuiteCRM versions prior to 8.6.1 Description: The issue is related to a vulnerability in uploaded file verification in products, which allows for remote code execution. This is a critical issue that can be...

9.1CVSS8AI score0.03998EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2024/06/10 12:0 a.m.3 views

PT-2024-26983 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.4 SuiteCRM versions prior to 8.6.1 Description: The issue is related to a deprecated v4 API example with no log rotation, which allows denial of service by logging excessive data. This can lead to denial of...

8.6CVSS7.1AI score0.44701EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2024/06/10 12:0 a.m.1 views

PT-2024-26985 · Suitecrm · Suitecrm

Name of the Vulnerable Software and Affected Versions: SuiteCRM versions prior to 7.14.4 SuiteCRM versions prior to 8.6.1 Description: A vulnerability in connectors of SuiteCRM allows an authenticated user to perform a remote code execution attack. Recommendations: For versions prior to 7.14.4,...

8.8CVSS8AI score0.06213EPSS
Exploits0References7
CNNVD
CNNVDadded 2023/09/20 12:0 a.m.2 views

phpPgAdmin Code Issues Vulnerabilities

phpPgAdmin is a software application. The premier web-based administration tool for postgresql. A security vulnerability exists in phpPgAdmin version 7.14.4 and earlier versions. An attacker can exploit the vulnerability to remotely execute code...

9.8CVSS6.9AI score0.03455EPSS
Exploits0References3
Rows per page
Query Builder