Suitecrm

Suite CRM

34 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2026-29105

  • EPSS 0.03%
  • Veröffentlicht 19.03.2026 22:58:48
  • Zuletzt bearbeitet 24.03.2026 14:10:38

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an unauthenticated open redirect vulnerability in the WebToLead capture functionality. A u...

2.7

CVE-2026-29104

  • EPSS 0.05%
  • Veröffentlicht 19.03.2026 22:55:51
  • Zuletzt bearbeitet 24.03.2026 14:18:28

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authen...

7.2

CVE-2026-29103

  • EPSS 0.32%
  • Veröffentlicht 19.03.2026 22:54:34
  • Zuletzt bearbeitet 24.03.2026 14:23:34

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. A Critical Remote Code Execution (RCE) vulnerability exists in SuiteCRM 7.15.0 and 8.9.2, allowing authenticated administrators to execute arbit...

8.8

CVE-2026-29102

  • EPSS 0.33%
  • Veröffentlicht 19.03.2026 22:53:09
  • Zuletzt bearbeitet 24.03.2026 14:29:12

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, an Authenticated Remote Code Execution (RCE) vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8...

7.5

CVE-2026-29101

  • EPSS 0.08%
  • Veröffentlicht 19.03.2026 22:51:47
  • Zuletzt bearbeitet 24.03.2026 14:33:57

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, a Denial-of-Service (DoS) vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8.9.3 patch the issu...

6.1

CVE-2026-29100

  • EPSS 0.03%
  • Veröffentlicht 19.03.2026 22:48:49
  • Zuletzt bearbeitet 24.03.2026 14:39:27

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM 7.15.0 contains a reflected HTML injection vulnerability in the login page that allows attackers to inject arbitrary HTML content, enab...

8.8

CVE-2026-29099

  • EPSS 0.03%
  • Veröffentlicht 19.03.2026 22:46:56
  • Zuletzt bearbeitet 24.03.2026 14:45:01

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, the `retrieve()` function in `include/OutboundEmail/OutboundEmail.php` fails to properly neutralize the user...

4.9

CVE-2026-29098

  • EPSS 0.07%
  • Veröffentlicht 19.03.2026 22:43:58
  • Zuletzt bearbeitet 24.03.2026 14:48:30

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, the `action_exportCustom` function in `modules/ModuleBuilder/controller.php` fails to properly neutralize pa...

7.5

CVE-2026-29097

  • EPSS 0.05%
  • Veröffentlicht 19.03.2026 22:39:03
  • Zuletzt bearbeitet 24.03.2026 14:49:18

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Versions prior to 7.15.1 and 8.9.3 contain a Server-Side Request Forgery (SSRF) vulnerability combined with a Denial of Service (DoS) condition ...

6.5

CVE-2026-29096

  • EPSS 0.03%
  • Veröffentlicht 19.03.2026 22:37:51
  • Zuletzt bearbeitet 24.03.2026 14:58:53

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, when creating or editing a report (AOR_Reports module), the `field_function` parameter from POST data is sav...