Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 401 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-3505 Onest CRM Project List 2 cross site scripting OnestCRM Low 3.5 2023-07-04 15:31:04 Deep Dive
CVE-2020-36735 WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.6.3 - Cross-Site Request Forgery Bypass wedevsERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support Medium 4.3 2023-07-01 02:54:24 Deep Dive
CVE-2023-0588 Catalyst Connect Zoho CRM Client Portal < 2.1.0 - Reflected XSS UnknownCatalyst Connect Zoho CRM Client Portal 中危 -2023-06-27 13:17:24 Deep Dive
CVE-2023-2744 WP ERP < 1.12.4 - Admin+ SQL Injection UnknownWP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 高危 -2023-06-27 13:17:11 Deep Dive
CVE-2023-2743 WP ERP < 1.12.4 - Reflected Cross-Site Scripting UnknownWP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 中危 -2023-06-27 13:17:06 Deep Dive
CVE-2023-27427 WordPress CRM Memberships Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS) NTZAppsCRM Memberships Medium 5.9 2023-06-23 12:21:43 Deep Dive
CVE-2023-27429 WordPress Jetpack CRM Plugin <= 5.4.4 is vulnerable to Cross Site Scripting (XSS) Automattic - Jetpack CRM teamJetpack CRM Medium 5.9 2023-06-21 13:19:21 Deep Dive
CVE-2023-2527 Integration for Contact Form 7 and Zoho CRM, Bigin < 1.2.4 - Admin+ SQLi UnknownIntegration for Contact Form 7 and Zoho CRM, Bigin 中危 -2023-06-19 10:52:51 Deep Dive
CVE-2023-33986 Cross-Site Scripting (XSS) vulnerability in SAP CRM ABAP (Grantor Management) SAP_SESAP CRM ABAP (Grantor Management) Medium 6.1 2023-06-13 02:45:44 Deep Dive
CVE-2023-1430 FluentCRM - Marketing Automation For WordPress <= 2.8.01 - Insufficient Use of Hash as Authorization Control techjewelFluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution Medium 6.5 2023-06-09 05:33:37 Deep Dive
CVE-2023-2404 CRM and Lead Management by vcita <= 2.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaCRM and Lead Management by vcita Medium 6.4 2023-06-03 04:35:16 Deep Dive
CVE-2023-2405 CRM and Lead Management by vcita <= 2.7.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vcitaCRM and Lead Management by vcita Medium 6.1 2023-06-03 04:35:12 Deep Dive
CVE-2023-3058 07FLY CRM User Profile cross site scripting 07FLYCRM Low 3.5 2023-06-02 13:00:05 Deep Dive
CVE-2023-2836 CRM Perks Forms <= 1.1.1 - Authenticated (Admin+) Stored Cross-Site Scripting crmperksCRM Perks Forms – WordPress Form Builder Medium 4.4 2023-05-31 03:36:11 Deep Dive
CVE-2023-33311 WordPress Contact Form Entries Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS) CRM PerksContact Form Entries Medium 6.5 2023-05-28 18:32:38 Deep Dive
CVE-2023-2925 Webkul krayin crm Edit Person Page 2 cross site scripting Webkulkrayin crm Low 2.4 2023-05-27 08:31:03 Deep Dive
CVE-2023-25976 WordPress Integration for Contact Form 7 and Zoho CRM, Bigin Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF) CRM PerksIntegration for Contact Form 7 and Zoho CRM, Bigin Medium 4.3 2023-05-26 11:13:08 Deep Dive
CVE-2023-2717 Groundhogg <= 2.7.9.8 - Cross-Site Request Forgery to Disable All Plugins trainingbusinessprosGroundhogg — CRM, Newsletters, and Marketing Automation Medium 5.4 2023-05-20 02:03:25 Deep Dive
CVE-2023-2736 Groundhogg <= 2.7.9.8 - Cross-Site Request Forgery to Privilege Escalation trainingbusinessprosGroundhogg — CRM, Newsletters, and Marketing Automation High 7.5 2023-05-20 02:03:24 Deep Dive
CVE-2023-2735 Groundhogg <= 2.7.9.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode trainingbusinessprosGroundhogg — CRM, Newsletters, and Marketing Automation Medium 4.9 2023-05-20 02:03:23 Deep Dive