2 matches found
SugarCRM Multiple Vulnerabilities (Sep 2017)
SugarCRM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sugarcrm:sugarcrm"; if description...
CVE-2017-14508
CVE-2017-14508 concerns SugarCRM prior to 7.7.2.3, 7.8.x prior to 7.8.2.2, and 7.9.x prior to 7.9.2.0 (and Sugar Community Edition 6.5.26), where authenticated users could trigger SQL injection in the Documents and Emails module, demonstrated by appending a backslash to bean_id in modules/Emails/...