CVE-2025-64493 | SuiteCRM up to 8.9.0 GraphQL API appMetadata sql injection (GHSA-5gcj-mfqq-v8f7)

A vulnerability was found in SuiteCRM up to 8.9.0 and classified as critical. Affected is the function appMetadata of the component GraphQL API. Executing manipulation can lead to sql injection.

The identification of this vulnerability is CVE-2025-64493. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More