CVE-2026-29102 SuiteCRM has Authenticated RCE in Modules

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, an Authenticated Remote Code Execution RCE vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8.9.3 patch the issue...

CVE-2026-29102

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, an Authenticated Remote Code Execution RCE vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8.9.3 patch the issue...

CVE-2026-29101 SuiteCRM Vulnerable to Directory Traversal to DoS in Modules

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, a Denial-of-Service DoS vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8.9.3 patch the issue...

CVE-2026-29101

SuiteCRM contains a Denial-of-Service (DoS) vulnerability in modules for versions prior to 7.15.1 and 8.9.3. The issue is mitigated by upgrading to 7.15.1 or 8.9.3, which patch the vulnerability. The publicly documented details confirm the affected products and patched versions; no exploit detail...

CVE-2026-29099 SuiteCRM has Authenticated Blind SQL Injection in OutboundEmail Legacy Functionality.

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, the retrieve function in include/OutboundEmail/OutboundEmail.php fails to properly neutralize the user controlled $id parameter. It is assumed that the...

EUVD-2022-6667

Malicious code in bioql PyPI...

CVE-2021-37597

WP Cerber before 8.9.3 allows MFA bypass via wordpressloggedinhash manipulation...

CVE-2022-3072

Cross-site Scripting XSS - Stored in GitHub repository francoisjacquet/rosariosis prior to 8.9.3...

Authentication flaw

WP Cerber before 8.9.3 allows bypass of /wp-json access control via a trailing ? character...

WordPress WP Cerber 安全漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress WP Cerber prior to version 8.9.3, which stems from a...

[SECURITY] Updated i386 package for sendmail

The version of sendmail that was listed in the earlier advisory today was compiled with the wrong version of libc. This has been corrected in version 8.9.3-3slink1.0.1 . wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Intel ia32 architecture:...