RSS   Vulnerabilities for 'Perfex crm'   RSS

2021-10-22
 
CVE-2020-28961

CWE-79
 

 
Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component ./clients/client via the company name parameter.

 
2018-01-26
 
CVE-2017-17976

CWE-434
 

 
In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution.

 


Copyright 2024, cxsecurity.com

 

Back to Top