SuiteCRM before 7.10.33 and 7.11.22... CVE-2021-41595

5.0 AV AC AU C I A
发布: 2021-10-04
修订: 2024-11-21

SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. An attacker can partially include arbitrary files via the file_name parameter of the Step3 import functionality.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息