Suitecrm@7.11.13 Security Vulnerabilities and Issues — Suitecrm@7.11.13 CVE List

Lucene search

SalesagilitySuitecrm7.11.13

3 matches found

CVE•added 2020/11/18 10:15 p.m.•43 views

CVE-2020-15300

SuiteCRM through 7.11.13 has an Open Redirect in the Documents module via a crafted SVG document.

6.1CVSS6.1AI score0.00285EPSS

CVE•added 2020/11/18 9:15 p.m.•40 views

CVE-2020-15301

SuiteCRM through 7.11.13 allows CSV Injection via registration fields in the Accounts, Contacts, Opportunities, and Leads modules. These fields are mishandled during a Download Import File Template operation.

7.8CVSS7.7AI score0.00273EPSS

CVE•added 2020/11/18 10:15 p.m.•39 views

CVE-2020-14208

SuiteCRM 7.11.13 is affected by stored Cross-Site Scripting (XSS) in the Documents preview functionality. This vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML.

5.4CVSS5AI score0.00154EPSS