CVE-2025-64492 | SuiteCRM up to 8.9.0 sql injection (GHSA-54m4-4p54-j8hp)

November 8, 2025 Yanac

A vulnerability was found in SuiteCRM up to 8.9.0. It has been rated as critical. This affects an unknown part. This manipulation causes sql injection.

This vulnerability is tracked as CVE-2025-64492. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More

CVE-2025-64489 | SuiteCRM up to 7.14.7/8.9.0 Deactivation privileges management (GHSA-j6jg-9jj3-q2ph)
CVE-2025-64434 | KubeVirt up to 1.5.2/1.6.0 on Kubernetes improper authentication (GHSA-ggp9-c99x-54gp)