Vulnerabilities > Salesagility > Suitecrm > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-10 | CVE-2024-36417 | Cross-site Scripting vulnerability in Salesagility Suitecrm SuiteCRM is an open-source Customer Relationship Management (CRM) software application. | 9.0 |
| 2024-06-10 | CVE-2024-36412 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM is an open-source Customer Relationship Management (CRM) software application. | 9.8 |
| 2023-11-14 | CVE-2023-6126 | Unspecified vulnerability in Salesagility Suitecrm Code Injection in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2. | 9.8 |
| 2023-10-03 | CVE-2023-5350 | Unspecified vulnerability in Salesagility Suitecrm SQL Injection in GitHub repository salesagility/suitecrm prior to 7.14.1. | 9.1 |
| 2022-01-28 | CVE-2021-45899 | Deserialization of Untrusted Data vulnerability in Salesagility Suitecrm SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows PHAR deserialization that can lead to remote code execution. | 9.8 |
| 2022-01-28 | CVE-2021-45898 | Unspecified vulnerability in Salesagility Suitecrm SuiteCRM before 7.12.3 and 8.x before 8.0.2 allows local file inclusion. | 9.8 |
| 2020-03-16 | CVE-2020-8783 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow SQL Injection (issue 1 of 4). | 9.8 |
| 2020-03-16 | CVE-2020-8784 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow SQL Injection (issue 2 of 4). | 9.8 |
| 2020-03-16 | CVE-2020-8785 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow SQL Injection (issue 3 of 4). | 9.8 |
| 2020-03-16 | CVE-2020-8786 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow SQL Injection (issue 4 of 4). | 9.8 |