Latest Security News about suitecrm 7 10 x versions

SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean ID to be submitted

  Overview : SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior to 7.11.11 allow for an invalid Bean ID to be submitted. Vulnerability Details :        CVE-2020-8787 Security CVE: 2020-8803 - Local File Inclusion CVE: 2020-8801 - PHP Object Injections CVE: 2020-8800 - Second-Order PHP Object Injections CVE: 2020-8802 - Bean Manipulation  Bug Fixes Issue: 8541 - [...]

SQL Injection flaw in SuiteCRM

Overview : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection. Affected Product(s) : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 Vulnerability Details : CVE ID : CVE-2019-18784 The SuiteCRM specified versions are prone to SQLi vulnerability. Exploiting this issue allows attackers to do […]