Vtiger Crm@7.0.1 Security Vulnerabilities and Issues — Vtiger Crm@7.0.1 CVE List

Lucene search

VtigerVtiger Crm7.0.1

2 matches found

CVE•added 2019/06/06 7:29 p.m.•164 views

CVE-2018-8047

vtiger CRM 7.0.1 is affected by one reflected Cross-Site Scripting (XSS) vulnerability affecting version 7.0.1 and probably prior versions. This vulnerability could allow remote unauthenticated attackers to inject arbitrary web script or HTML via index.php?module=Contacts&view=List (app parameter).

6.1CVSS6AI score0.00412EPSS

CVE•added 2019/05/17 5:29 p.m.•37 views

CVE-2019-11057

SQL injection vulnerability in Vtiger CRM before 7.1.0 hotfix3 allows authenticated users to execute arbitrary SQL commands.

8.8CVSS8.9AI score0.00599EPSS