Vulnerabilidades em salesagility
40 resultadosCVE-2024-49774HIGHModuleScanner flaws in SuiteCRMEPSS 0.5%CVE-2023-5351HIGHCross-site Scripting (XSS) - Stored in salesagility/suitecrmEPSS 0.5%CVE-2024-36408CRITICALSuiteCRM authenticated SQL Injection in AlertsEPSS 0.5%CVE-2024-36409CRITICALSuiteCRM authenticated SQL Injection in TreeData entrypointEPSS 0.4%CVE-2024-36411CRITICALSuiteCRM authenticated SQL Injection in EmailUIAjax displayView controllerEPSS 0.4%CVE-2024-49772HIGHAuthenticated SQL injection in AM_ProjectTemplates controller in SuiteCRMEPSS 0.4%CVE-2024-50332HIGHAuthenticated Blind SQL Injection in DeleteRelationShip in SuiteCRMEPSS 0.4%CVE-2023-6127MEDIUMUnrestricted Upload of File with Dangerous Type in salesagility/suitecrmEPSS 0.4%CVE-2024-36410CRITICALSuiteCRM authenticated SQL Injection in EmailUIAjax messages count controller EPSS 0.4%CVE-2024-36417MEDIUMSuiteCRM Stored XSS Vulnerability Allows Code Execution via Malicious iFrameEPSS 0.4%CVE-2024-50333MEDIUMRCE in ModuleBuilder in SuiteCRMEPSS 0.4%CVE-2024-36414HIGHSuiteCRM authenticated Server-Side Request ForgeryEPSS 0.4%CVE-2024-36407LOWSuiteCRM unauthenticated user password reset on php7EPSS 0.3%CVE-2024-36413HIGHSuiteCRM authenticated Reflected Cross-Site ScriptingEPSS 0.3%CVE-2023-3627HIGHCross-Site Request Forgery (CSRF) in salesagility/suitecrm-coreEPSS 0.3%CVE-2024-49773MEDIUMImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in SuiteCRMEPSS 0.3%CVE-2024-50335MEDIUMAuthenticated XSS in "Publish Key" Field Allowing Unauthorized Administrator User Creation in SuiteCRMEPSS 0.3%CVE-2024-36406MEDIUMSuiteCRM vulnerable to open redirectsEPSS 0.3%CVE-2024-45392HIGHSuiteCRM has wrong deletion permission checks on API delete callEPSS 0.3%CVE-2024-36419MEDIUMSuiteCRM-Core Host Header Injection in /legacy EPSS 0.2%