Suitecrm · Suitecrm · CVE-2024-36417
**Name of the Vulnerable Software and Affected Versions**
SuiteCRM versions prior to 7.14.4
SuiteCRM versions prior to 8.6.1
**Description**
The issue allows an unverified IFrame to be added to some inputs, which could enable a cross-site scripting attack.
**Recommendations**
For versions prior to 7.14.4, update to version 7.14.4 or later to resolve the issue.
For versions prior to 8.6.1, update to version 8.6.1 or later to resolve the issue.