A vulnerability was found in SuiteCRM up to 7.15.0/8.9.2 . It has been declared as critical . This affects an unknown part. Such manipulation leads to sql injection. This vulnerability is referenced as CVE-2026-33288 . It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.