CVE-2021-31792

CVE-2021-31792

EPSS 0.9%

XSS in the client account page in SuiteCRM before 7.11.19 allows an attacker to inject JavaScript via the name field

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://chris-forbes.github.io/CVE-2021-31792 https://docs.suitecrm.com/admin/releases/7.11.x/#_7_11_19 https://github.com/salesagility/SuiteCRM