Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor 72crm Subscribe
Filtered by product Wukong Crm
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-46610 1 72crm 1 Wukong Crm 2023-01-13 N/A 8.8 HIGH
72crm v9 was discovered to contain an arbitrary file upload vulnerability via the avatar upload function. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2022-37181 1 72crm 1 Wukong Crm 2022-08-28 N/A 9.8 CRITICAL
72crm 9.0 has an Arbitrary file upload vulnerability.
CVE-2022-37178 1 72crm 1 Wukong Crm 2022-08-28 N/A 8.8 HIGH
An issue was discovered in 72crm 9.0. There is a SQL Injection vulnerability in View the task calendar.