Open Redirect Vulnerability in SuiteCRM by SalesAgility
CVE-2024-36406

Currently unrated

Key Information:

Vendor
SalesAgility
Status
SuiteCRM
Vendor
CVE Published:
10 June 2024

Summary

SuiteCRM, an open-source Customer Relationship Management software, is susceptible to an open redirect vulnerability due to unchecked input in versions prior to 7.14.4 and 8.6.1. This flaw can be exploited to redirect users to unintended locations, potentially facilitating phishing attacks or malicious redirection. The affected versions have been improved to mitigate this issue, underscoring the importance of updating to the latest releases.

References

https://github.com/salesagility/SuiteCRM/security/advisor...

Timeline

  • Vulnerability published

.
CVE-2024-36406 : Open Redirect Vulnerability in SuiteCRM by SalesAgility | SecurityVulnerability.io