5Kas
CVE-2024-50335 | SalesAgility SuiteCRM up to 7.14.5/8.7.0 Edit Profile Page o.js Publish Key cross site scripting (GHSA-8rw6-g96j-3w7m)
A vulnerability classified as problematic was found in SalesAgility SuiteCRM up to 7.14.5/8.7.0. This vulnerability affects unknown code of the file o.js of the component Edit Profile Page. The manipulation of the argument Publish Key leads to cross site scripting. This vulnerability was named CVE-2024-50335. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.