exploitDog

GHSA-xwrv-8p5w-52hj

Опубликовано: 21 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an attacker with admin privileges to execute arbitrary PHP code by exploiting the ZIP import functionality in the Module Import feature.

A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an attacker with admin privileges to execute arbitrary PHP code by exploiting the ZIP import functionality in the Module Import feature.

Ссылки

EPSS

Процентиль: 20%

0.00065

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2025-45753

CVSS3: 7.2

nvd

3 месяца назад

A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an attacker with admin privileges to execute arbitrary PHP code by exploiting the ZIP import functionality in the Module Import feature.

EPSS

Процентиль: 20%

0.00065

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-94