Vulnerabilities > Perfexcrm
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-11-08 | CVE-2021-40303 | Cross-site Scripting vulnerability in Perfexcrm Perfex CRM 1.10 perfex crm 1.10 is vulnerable to Cross Site Scripting (XSS) via /clients/profile. | 5.4 |
2021-10-22 | CVE-2020-28961 | Cross-site Scripting vulnerability in Perfexcrm Perfex CRM 2.4.4 Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component ./clients/client via the company name parameter. | 3.5 |
2018-01-26 | CVE-2017-17976 | Unrestricted Upload of File with Dangerous Type vulnerability in Perfexcrm Perfex CRM 1.9.7 In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution. | 7.5 |