CVE-2021-41596

Published: 2021-10-04T17:15Z

Last Modified: 2024-11-21T06:26Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. An attacker can partially include arbitrary files via the importFile parameter of the RefreshMapping import functionality. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt