Security Advisory

CVE-2024-54687

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-10 00:00:00
Last updated 2025-01-13 20:05:45
Assigner mitre
State PUBLISHED

Description

Vtiger CRM v.6.1 and before is vulnerable to Cross Site Scripting (XSS) via the Documents module and function uploadAndSaveFile in CRMEntity.php.