C3crm

Source repositories

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-44915	Hig	0.46	7.1	0.00		Jun 25, 2025	A cross-site scripting (XSS) vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login_error parameter.

CVE-2023-44915HigJun 25, 2025
risk 0.46cvss 7.1epss 0.00
A cross-site scripting (XSS) vulnerability in the component /Login.php of c3crm up to v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login_error parameter.