CVE-2021-31792

Published April 30th, 2021

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

3.5

LOW

Affected

1

PROJECT

Description

XSS in the client account page in SuiteCRM before 7.11.19 allows an attacker to inject JavaScript via the name field

SuiteCRM/SuiteCRM

SuiteCRM - Open source CRM for the world

GitHub

5.5K