| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-8867 | Perfex CRM Parameter Clients.php cross site scripting | Perfex | CRM | Low | 3.5 | 2024-09-15 02:31:05 | Deep Dive |
| CVE-2024-45279 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server for ABAP (CRM Blueprint Application Builder Panel) | SAP_SE | SAP NetWeaver Application Server for ABAP (CRM Blueprint Application Builder Panel) | Medium | 6.1 | 2024-09-10 04:29:46 | Deep Dive |
| CVE-2024-5879 | HubSpot – CRM, Email Marketing, Live Chat, Forms & Analytics <= 11.1.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via HubSpot Meeting Widget | hubspotdev | HubSpot All-In-One Marketing – Forms, Popups, Live Chat | Medium | 6.4 | 2024-08-30 04:29:57 | Deep Dive |
| CVE-2024-43350 | WordPress Propovoice CRM plugin <= 1.7.6.4 - Insecure Direct Object References (IDOR) vulnerability | Propovoice | Propovoice CRM | Medium | 5.3 | 2024-08-18 21:28:51 | Deep Dive |
| CVE-2024-41737 | Server-Side Request Forgery (SSRF) in SAP CRM ABAP (Insights Management) | SAP_SE | SAP CRM ABAP (Insights Management) | Medium | 5.0 | 2024-08-13 03:55:04 | Deep Dive |
| CVE-2024-38166 | Microsoft Dynamics 365 Cross-site Scripting Vulnerability | Microsoft | Dynamics CRM Service Portal Web Resource | High | 8.2 | 2024-08-06 21:38:19 | Deep Dive |
| CVE-2024-7484 | CRM Perks Forms <= 1.1.3 - Authenticated (Administrator+) Arbitrary File Upload | crmperks | CRM Perks Forms – WordPress Form Builder | High | 7.2 | 2024-08-06 01:49:57 | Deep Dive |
| CVE-2024-39304 | ChurchCRM SQL Injection Vulnerability | ChurchCRM | CRM | High | 8.8 | 2024-07-26 17:31:38 | Deep Dive |
| CVE-2024-38696 | WordPress Zoho CRM Lead Magnet plugin <= 1.7.8.8 - Cross Site Scripting (XSS) vulnerability | Zoho CRM | Zoho CRM Lead Magnet | High | 7.1 | 2024-07-20 07:35:22 | Deep Dive |
| CVE-2024-6666 | WP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_id | wedevs | ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | High | 8.8 | 2024-07-11 06:43:14 | Deep Dive |
| CVE-2024-5792 | Houzez CRM <= 1.4.2 - Authenticated (Seller+) SQL Injection | Houzez | Houzez CRM | High | 8.8 | 2024-07-10 02:02:48 | Deep Dive |
| CVE-2024-37175 | [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 4.3 | 2024-07-09 04:07:22 | Deep Dive |
| CVE-2024-39598 | [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 5.0 | 2024-07-09 04:04:41 | Deep Dive |
| CVE-2024-37174 | [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 6.1 | 2024-07-09 04:01:21 | Deep Dive |
| CVE-2024-37173 | [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 6.1 | 2024-07-09 03:57:16 | Deep Dive |
| CVE-2024-4754 | Stored XSS in Next4Biz's BPM | Next4Biz CRM & BPM Software | Business Process Manangement (BPM) | Medium | 5.4 | 2024-06-24 09:01:13 | Deep Dive |
| CVE-2024-5683 | Remote Code Execution in Next4Biz's BPM | Next4Biz CRM & BPM Software | Business Process Manangement (BPM) | Critical | 9.8 | 2024-06-24 08:54:32 | Deep Dive |
| CVE-2024-34686 | Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 6.1 | 2024-06-11 02:11:50 | Deep Dive |
| CVE-2024-35632 | WordPress Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerability | CRM Perks. | Integration for Contact Form 7 and Constant Contact | Medium | 4.3 | 2024-06-03 11:49:26 | Deep Dive |
| CVE-2024-34755 | WordPress Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability | CRM Perks | Integration for Contact Form 7 and Salesforce | Medium | 4.3 | 2024-05-17 09:52:40 | Deep Dive |