A vulnerability identified as problematic has been detected in Vtiger Vtiger CRM up to 8.4.0. Affected by this vulnerability is an unknown functionality of the file manifest.xml of the component Admin Module Import Feature. This manipulation causes unrestricted upload.
This vulnerability is handled as CVE-2026-23698. The attack can be initiated remotely. There is not any exploit available.