Vtiger Crm Security Vulnerabilities and Issues — Vtiger Crm CVE List

Lucene search

VtigerVtiger Crm

5 matches found

CVE•added 2020/01/29 6:15 p.m.•138 views

CVE-2013-3215

vtiger CRM 5.4.0 and earlier contain an Authentication Bypass Vulnerability due to improper authentication validation in the validateSession function.

9.8CVSS9.3AI score0.73669EPSS

CVE•added 2020/01/28 9:15 p.m.•94 views

CVE-2013-3214

vtiger CRM 5.4.0 and earlier contain a PHP Code Injection Vulnerability in 'vtigerolservice.php'.

9.8CVSS9.5AI score0.89073EPSS

CVE•added 2020/01/28 9:15 p.m.•68 views

CVE-2013-3212

vtiger CRM 5.4.0 and earlier contain local file-include vulnerabilities in 'customerportal.php' which allows remote attackers to view files and execute local script code.

8.1CVSS8.5AI score0.23052EPSS

CVE•added 2020/02/07 3:15 p.m.•55 views

CVE-2013-3591

vTiger CRM 5.3 and 5.4: 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability

8.8CVSS8.8AI score0.799EPSS

CVE•added 2020/02/06 2:15 p.m.•55 views

CVE-2015-6000

Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.3.0 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then ...

8.8CVSS7.9AI score0.7742EPSS