Security Advisory

CVE-2021-39198

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-19 21:30:09

Last updated 2024-08-04 01:58:18

Assigner GitHub_M

State PUBLISHED

Description

OroCRM is an open source Client Relationship Management (CRM) application. Affected versions we found to suffer from a vulnerability which could an attacker is able to disqualify any Lead with a Cross-Site Request Forgery (CSRF) attack. There are no workarounds that address this vulnerability and all users are advised to update their package.

← Browse all CVEs View on cve.org ↗