Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Salesagility Subscribe
Filtered by product Suitecrm
Total 50 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-18784 1 Salesagility 1 Suitecrm 2019-11-06 7.5 HIGH 9.8 CRITICAL
SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection.
CVE-2019-13335 1 Salesagility 1 Suitecrm 2019-10-08 7.5 HIGH 9.8 CRITICAL
SalesAgility SuiteCRM 7.10.x 7.10.19 and 7.11.x before and 7.11.7 has SSRF.
CVE-2019-14752 1 Salesagility 1 Suitecrm 2019-10-02 4.3 MEDIUM 6.1 MEDIUM
SuiteCRM 7.10.x and 7.11.x before 7.10.20 and 7.11.8 has XSS.
CVE-2019-12599 1 Salesagility 1 Suitecrm 2019-06-10 7.5 HIGH 9.8 CRITICAL
SuiteCRM 7.10.x before 7.10.17 and 7.11.x before 7.11.5 allows SQL Injection.
CVE-2019-12600 1 Salesagility 1 Suitecrm 2019-06-10 7.5 HIGH 9.8 CRITICAL
SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 2 of 3).
CVE-2019-12601 1 Salesagility 1 Suitecrm 2019-06-10 7.5 HIGH 9.8 CRITICAL
SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 3 of 3).
CVE-2019-12598 1 Salesagility 1 Suitecrm 2019-06-10 7.5 HIGH 9.8 CRITICAL
SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 1 of 3).
CVE-2019-6506 1 Salesagility 1 Suitecrm 2019-04-17 7.5 HIGH 9.8 CRITICAL
SuiteCRM before 7.8.28, 7.9.x and 7.10.x before 7.10.15, and 7.11.x before 7.11.3 allows SQL Injection.
CVE-2018-15606 1 Salesagility 1 Suitecrm 2018-11-15 4.3 MEDIUM 6.1 MEDIUM
An XSS issue was discovered in SalesAgility SuiteCRM 7.x before 7.8.21 and 7.10.x before 7.10.8, related to phishing an error message.
CVE-2015-5948 1 Salesagility 1 Suitecrm 2017-09-09 9.3 HIGH 8.1 HIGH
Race condition in SuiteCRM before 7.2.3 allows remote attackers to execute arbitrary code. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-5947.