23Şub
CVE-2025-1618 | vTiger CRM 6.4.0 index.php _operation cross site scripting
A vulnerability has been found in vTiger CRM 6.4.0 and classified as problematic. This vulnerability affects unknown code of the file /modules/Mobile/index.php. The manipulation of the argument _operation leads to cross site scripting. This vulnerability was named CVE-2025-1618. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.