CVE-2004-1225

2004-12-1505:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.3%

JSON

SQL injection vulnerability in SugarCRM Sugar Sales before 2.0.1a allows remote attackers to execute arbitrary SQL commands and gain privileges via the record parameter in a DetailView action to index.php, and record parameters in other functionality.

References

marc.info/?l=bugtraq&m=110295433323795&w=2

www.gulftech.org/?node=research&article_id=00053-120104

www.securityfocus.com/bid/11740

exchange.xforce.ibmcloud.com/vulnerabilities/18325