CVE-2024-36409
SuiteCRM authenticated SQL Injection in TreeData entrypoint
SuiteCRM is an open-source Customer Relationship Management (CRM) software application. In versions prior to 7.14.4 and 8.6.1, poor input validation allows for SQL Injection in Tree data entry point. Versions 7.14.4 and 8.6.1 contain a fix for this issue.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H
Productos afectados
salesagility · SuiteCRM¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →