SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, an unverified IFrame can be added some some inputs, which could allow for a cross-site scripting attack. Versions 7.14.4 and 8.6.1 contain a fix for this issue.
References
Link | Resource |
---|---|
https://github.com/salesagility/SuiteCRM/security/advisories/GHSA-3www-6rqc-rm7j | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-06-10T19:55:56.571Z
Updated: 2024-06-11T18:49:00.562Z
Reserved: 2024-05-27T15:59:57.033Z
Link: CVE-2024-36417
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-06-10T20:15:14.960
Modified: 2024-06-12T17:58:04.477
Link: CVE-2024-36417
JSON object: View
Redhat Information
No data.
CWE