Skip to main content

Fatfreecrm

2 CVEs product

Monthly

CVE-2022-39281 Ruby MEDIUM PATCH This Month

fat_free_crm is a an open source, Ruby on Rails customer relationship management platform (CRM). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Fatfreecrm
NVD GitHub
CVSS 3.1
6.5
EPSS
1.4%
CVE-2018-1000842 Ruby MEDIUM PATCH This Month

FatFreeCRM version <=0.14.1, >=0.15.0 <=0.15.1, >=0.16.0 <=0.16.3, >=0.17.0 <=0.17.2, ==0.18.0 contains a Cross Site Scripting (XSS) vulnerability in commit 6d60bc8ed010c4eda05d6645c64849f415f68d65. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Fatfreecrm
NVD GitHub
CVSS 3.1
6.1
EPSS
1.7%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

fat_free_crm is a an open source, Ruby on Rails customer relationship management platform (CRM). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Fatfreecrm
NVD GitHub
EPSS 2% CVSS 6.1
MEDIUM PATCH This Month

FatFreeCRM version <=0.14.1, >=0.15.0 <=0.15.1, >=0.16.0 <=0.16.3, >=0.17.0 <=0.17.2, ==0.18.0 contains a Cross Site Scripting (XSS) vulnerability in commit 6d60bc8ed010c4eda05d6645c64849f415f68d65. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Fatfreecrm
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy