Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 0.2%
- Veröffentlicht 28.11.2023 04:15:07
- Zuletzt bearbeitet 21.11.2024 08:02:38
OroCalendarBundle enables a Calendar feature and related functionality in Oro applications. Back-office users can access information from any call event, bypassing ACL security restrictions due to insufficient security checks. This issue has been pat...
5.8
CVE-2021-39198
- EPSS 0.11%
- Veröffentlicht 19.11.2021 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:18:52
OroCRM is an open source Client Relationship Management (CRM) application. Affected versions we found to suffer from a vulnerability which could an attacker is able to disqualify any Lead with a Cross-Site Request Forgery (CSRF) attack. There are no ...
1