Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Jan 10, 2025· Updated Jan 13, 2025

CVE-2024-54687

CVE-2024-54687

Description

Vtiger CRM v.6.1 and before is vulnerable to Cross Site Scripting (XSS) via the Documents module and function uploadAndSaveFile in CRMEntity.php.

Affected products

2

Vtiger/Vtigercrmcpe-rescue
Rukovoditel/CRMllm-fuzzy
Range: <=6.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.