Unrated severityNVD Advisory· Published Feb 13, 2020· Updated Aug 4, 2024
CVE-2020-8803
CVE-2020-8803
Description
SuiteCRM through 7.11.11 allows Directory Traversal to include arbitrary .php files within the webroot via add_to_prospect_list.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- packetstormsecurity.com/files/156329/SuiteCRM-7.11.11-Broken-Access-Control-Local-File-Inclusion.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2020/Feb/6mitrex_refsource_MISC
- suitecrm.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.