| عنوان | SuiteCRM - Cross Site Scripting - Add Dashboard Pages |
|---|
| الوصف | Security Issue: A Self XSS when combined with CSRF vulnerability leads to cookie stealing a.k.a session hijacking in Dashboard pages functionality.
Versions affected: < 7.8.24, < 7.10.11
Versions Patched: 7.8.24+, 7.10.11+ & 7.11.x
Advisory: https://docs.suitecrm.com/admin/releases/7.10.x/#_7_10_11
|
|---|
| المصدر | ⚠️ https://docs.suitecrm.com/admin/releases/7.10.x/#_7_10_11 |
|---|
| المستخدم | SalesAgility (UID 2790) |
|---|
| ارسال | 04/04/2019 12:21 PM (7 سنوات منذ) |
|---|
| الاعتدال | 04/04/2019 12:26 PM (4 minutes later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 132961 [SalesAgility SuiteCRM حتى 7.10.10 البرمجة عبر المواقع] |
|---|
| النقاط | 18 |
|---|