6 matches found
CVE-2010-0465
Cross-site scripting XSS vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field...
CVE-2010-0465
CVE-2010-0465 is a stored XSS in SugarCRM’s online Documents feature. Affected: SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a. Root cause: insufficient sanitization of the Document Name field in the Documents UI, allowing remote authenticated users to inject arbitrary script/HTML. Impact: ...
CVE-2010-0465
Cross-site scripting XSS vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field...
SugarCRM Stored XSS vulnerability
Class: Stored Cross Site Scripting XSS CVE: CVE-2010-0465 Remote: Yes Local: Yes Published: Jan 1, 2010 12:01AM Timeline: Submission to Mitre: January 29, 2010 Vendor Contact: February 18, 2010 Vendor Response: February 19, 2010 Patch Available: March 10, 2010 Credit: Jeromie Jackson CISSP, CISM...
SugarCRM x<5.5.0a and 5.2.0l cross site scripting Vulnerability
Exploit for unknown platform in category web applications =============================================================== SugarCRM x ;...
SugarCRM Cross Site Scripting
Class: Stored Cross Site Scripting XSS CVE: CVE-2010-0465 Remote: Yes Local: Yes Published: Jan 1, 2010 12:01AM Timeline: Submission to Mitre: January 29, 2010 Vendor Contact: February 18, 2010 Vendor Response: February 19, 2010 Patch Available: March 10, 2010 Credit: Jeromie Jackson CISSP, CISM...