CVE-2021-45041

Published December 19th, 2021

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

SuiteCRM before 7.12.2 and 8.x before 8.0.1 allows authenticated SQL injection via the Tooltips action in the Project module, involving resource_id and start_date.

manuelz120/CVE-2021-45041

PoC for CVE-2021-45041

GitHub