Vulnerabilities > Crmeb
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-15 | CVE-2024-50653 | Unspecified vulnerability in Crmeb CRMEB <=5.4.0 is vulnerable to Incorrect Access Control. | 7.5 |
| 2024-07-21 | CVE-2024-6944 | Deserialization of Untrusted Data vulnerability in Crmeb A vulnerability was found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. | 7.5 |
| 2024-07-21 | CVE-2024-6943 | Deserialization of Untrusted Data vulnerability in Crmeb A vulnerability has been found in ZhongBangKeJi CRMEB up to 5.4.0 and classified as critical. | 8.8 |
| 2024-06-05 | CVE-2024-36837 | SQL Injection vulnerability in Crmeb 5.2.2 SQL Injection vulnerability in CRMEB v.5.2.2 allows a remote attacker to obtain sensitive information via the getProductList function in the ProductController.php file. | 7.5 |
| 2024-02-21 | CVE-2024-1704 | Path Traversal vulnerability in Crmeb 5.2.2 A vulnerability was found in ZhongBangKeJi CRMEB 5.2.2. | 8.1 |
| 2024-02-21 | CVE-2024-1703 | Path Traversal vulnerability in Crmeb 5.2.2 A vulnerability was found in ZhongBangKeJi CRMEB 5.2.2. | 5.3 |
| 2023-06-14 | CVE-2023-3233 | Unspecified vulnerability in Crmeb A vulnerability was found in Zhong Bang CRMEB up to 4.6.0. | 8.8 |
| 2023-06-14 | CVE-2023-3234 | Unspecified vulnerability in Crmeb A vulnerability was found in Zhong Bang CRMEB up to 4.6.0. | 9.8 |
| 2023-06-14 | CVE-2023-3232 | Unspecified vulnerability in Crmeb A vulnerability was found in Zhong Bang CRMEB up to 4.6.0 and classified as critical. | 9.8 |
| 2023-05-08 | CVE-2023-30185 | Unrestricted Upload of File with Dangerous Type vulnerability in Crmeb CRMEB v4.4 to v4.6 was discovered to contain an arbitrary file upload vulnerability via the component \attachment\SystemAttachmentServices.php. | 9.8 |