Lucene search
+L

CVE-2011-0745

🗓️ 16 Mar 2011 22:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 44 Views🌐 WEB

SugarCRM before 6.1.3 allows remote authenticated users to discover customer and contact names

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2011-0745
15 Mar 201100:00
circl
Cvelist
CVE-2011-0745
16 Mar 201122:00
cvelist
EUVD
EUVD-2011-0757
7 Oct 202500:30
euvd
NVD
CVE-2011-0745
16 Mar 201122:55
nvd
Packet Storm
SugarCRM 6.1.1 Privilege Restriction Bypass
16 Mar 201100:00
packetstorm
Prion
Design/Logic Flaw
16 Mar 201122:55
prion
securityvulns
[RT-SA-2011-002] SugarCRM list privilege restriction bypass
15 Mar 201100:00
securityvulns
UbuntuCve
CVE-2011-0745
16 Mar 201122:55
ubuntucve
NVD
Node
OR
sugarcrmsugarcrmRange6.1.2
sugarcrmsugarcrmMatch2.0.1a
sugarcrmsugarcrmMatch2.0.1c
sugarcrmsugarcrmMatch4.5.0f
sugarcrmsugarcrmMatch4.5.1community_edition
sugarcrmsugarcrmMatch4.5.1i
sugarcrmsugarcrmMatch4.5.1o
sugarcrmsugarcrmMatch5.0.0community_edition
sugarcrmsugarcrmMatch5.0.0sugar_community_edition
sugarcrmsugarcrmMatch5.0.0hsugar_community_edition
sugarcrmsugarcrmMatch5.0.0ksugar_community_edition
sugarcrmsugarcrmMatch5.1.0sugar_community_edition
sugarcrmsugarcrmMatch5.1.0-betasugar_community_edition
sugarcrmsugarcrmMatch5.1csugar_community_edition
sugarcrmsugarcrmMatch5.2.0g
sugarcrmsugarcrmMatch5.2csugar_community_edition
sugarcrmsugarcrmMatch5.2dsugar_community_edition
sugarcrmsugarcrmMatch5.2esugar_community_edition
sugarcrmsugarcrmMatch5.5beta1
sugarcrmsugarcrmMatch5.5beta2
ParameterPositionPathDescriptionCWE
modulequery param/sugarcrm/index.php?module=Accounts&action=ShowDuplicatesShowDuplicates exposes a list of all accounts (privilege bypass via ShowDuplicates)CWE-20
actionquery param/sugarcrm/index.php?module=Accounts&action=ShowDuplicatesShowDuplicates exposes a list of all accounts (privilege bypass via ShowDuplicates)CWE-20
modulequery param/sugarcrm/index.php?module=Contacts&action=ShowDuplicatesShowDuplicates exposes a list of all contacts (privilege bypass via ShowDuplicates)CWE-20
actionquery param/sugarcrm/index.php?module=Contacts&action=ShowDuplicatesShowDuplicates exposes a list of all contacts (privilege bypass via ShowDuplicates)CWE-20

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jun 2026 23:27Current
6.4Medium risk
Vulners AI Score6.4
CVSS 24
EPSS0.06264
44