Filtered by vendor 1crm Subscriptions
Filtered by product 1crm Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-15958 1 1crm 1 1crm 2024-11-21 8.6 High
An issue was discovered in 1CRM System through 8.6.7. An insecure direct object reference to internally stored files allows a remote attacker to access various sensitive information via an unauthenticated request with a predictable URL.