CVE-2024-49773 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Export generateSearchWhere current_post sql injection (GHSA-5hr4-r43c-6qf7)

Çağlar Arlı - 1 Views

CVE-2024-49773 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Export generateSearchWhere current_post sql injection (GHSA-5hr4-r43c-6qf7)

A vulnerability, which was classified as critical, was found in SalesAgility SuiteCRM up to 7.14.5/8.7.0. Affected is the function generateSearchWhere of the component Export. The manipulation of the argument current_post leads to sql injection. This vulnerability is traded as CVE-2024-49773. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

P	S	Ç	P	C	C	P
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30

Annanowa

CVE-2024-49773 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Export generateSearchWhere current_post sql injection (GHSA-5hr4-r43c-6qf7)

CVE-2024-49773 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Export generateSearchWhere current_post sql injection (GHSA-5hr4-r43c-6qf7)

Son Yazılar

Son Yorumlar