Lucene search
K

6 matches found

NVD
NVD
added 2010/03/19 7:30 p.m.22 views

CVE-2010-0465

Cross-site scripting XSS vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field...

4.3CVSS5.2AI score0.01042EPSS
Exploits2References4
CVE
CVE
added 2010/03/19 7:0 p.m.45 views

CVE-2010-0465

CVE-2010-0465 is a stored XSS in SugarCRM’s online Documents feature. Affected: SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a. Root cause: insufficient sanitization of the Document Name field in the Documents UI, allowing remote authenticated users to inject arbitrary script/HTML. Impact: ...

4.3CVSS5.4AI score0.01042EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2010/03/19 7:0 p.m.26 views

CVE-2010-0465

Cross-site scripting XSS vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field...

5.2AI score0.01042EPSS
Exploits2References4
securityvulns
securityvulns
added 2010/03/18 12:0 a.m.59 views

SugarCRM Stored XSS vulnerability

Class: Stored Cross Site Scripting XSS CVE: CVE-2010-0465 Remote: Yes Local: Yes Published: Jan 1, 2010 12:01AM Timeline: Submission to Mitre: January 29, 2010 Vendor Contact: February 18, 2010 Vendor Response: February 19, 2010 Patch Available: March 10, 2010 Credit: Jeromie Jackson CISSP, CISM...

4.3CVSS5.5AI score0.01042EPSS
Exploits2
0day.today
0day.today
added 2010/03/17 12:0 a.m.26 views

SugarCRM x<5.5.0a and 5.2.0l cross site scripting Vulnerability

Exploit for unknown platform in category web applications =============================================================== SugarCRM x ;...

7.1AI score0.01042EPSS
Exploits2
Packet Storm
Packet Storm
added 2010/03/16 12:0 a.m.40 views

SugarCRM Cross Site Scripting

Class: Stored Cross Site Scripting XSS CVE: CVE-2010-0465 Remote: Yes Local: Yes Published: Jan 1, 2010 12:01AM Timeline: Submission to Mitre: January 29, 2010 Vendor Contact: February 18, 2010 Vendor Response: February 19, 2010 Patch Available: March 10, 2010 Credit: Jeromie Jackson CISSP, CISM...

4.3CVSS6.7AI score0.01042EPSS
Exploits2
Rows per page
Query Builder