Vulnerabilities > Vtiger > Vtiger CRM > 7.5.0

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-38891 SQL Injection vulnerability in Vtiger CRM 7.5.0
SQL injection vulnerability in Vtiger CRM v.7.5.0 allows a remote authenticated attacker to escalate privileges via the getQueryColumnsList function in ReportRun.php.
network
low complexity
vtiger CWE-89
8.8
8.8