2 matches found
SugarCRM Multiple Vulnerabilities (Sep 2017)
SugarCRM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sugarcrm:sugarcrm"; if description...
CVE-2017-14509
SugarCRM CVE-2017-14509 concerns a remote file inclusion in the Connectors module of SugarCRM (versions prior to 7.7.2.3, 7.8.x before 7.8.2.2, 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26) exploitable by authenticated users via module=CallRest&url= in the query string. The issue arise...