Release notes 7.5.4
From SuiteCRM Documentation
SuiteCRM 7.5.4 IMPORTANT Security Patch
- Resolves a Security vulnerability with Serialized Input, to prevent possible object injection attacks
- Removes the option to allow serialized user input to the SuiteCRM Rest Client.
- Changed serialized User input to use JSON
Users of ALL previous releases are advised to Upgrade to 7.5.4 or 7.6.5 as soon as possible
Special thanks for Egidio Romano for alerting and helping us resolve this vulnerability.