Lucene search

K
canvasImmunity CanvasSUGARCRM_FILEUPLOAD
HistoryJun 22, 2009 - 2:30 p.m.

Immunity Canvas: SUGARCRM_FILEUPLOAD

2009-06-2214:30:00
Immunity Canvas
exploitlist.immunityinc.com
21

0.027 Low

EPSS

Percentile

90.5%

Name sugarcrm_fileupload
CVE CVE-2009-2146 Exploit Pack
VENDOR: http://www.sugarcrm.com
Notes: Tested on SugarCRM 5.2.0c. This exploits needs a valid username and password for SugarCRM to exploit as the vulnerability lies in the compose email feature.
Repeatability: Infinite
References: [‘http://www.ush.it/team/ush/hack-sugarcrm_520e/adv.txt’]
CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2146

0.027 Low

EPSS

Percentile

90.5%

Related for SUGARCRM_FILEUPLOAD