Suite CRM version 7.14.2 allows including local php files. This is possiblebecause the application is vulnerable to LFI.
{ "cpes": [ "cpe:2.3:a:salesagility:suitecrm:7.14.2:*:*:*:*:*:*:*" ], "severity": "Critical" }