Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-42994

VTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement, leading to a SQL Injection in the "CompanyDetails" operation of the "MailManager" module.

No technical information available.

No CWE or OWASP classifications available.

Software From Fixed in
vtiger / vtiger_crm - 8.1.0.x