Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-3539

EspoCRM 6.1.6 and prior suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 6.1.7 of the product.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.3%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 3.5
Products affected by CVE-2021-3539


Contact Us

Shodan ® - All rights reserved