Lucene search
K

7 matches found

Check Point Advisories
Check Point Advisories
added 2018/10/21 12:0 a.m.4 views

SugarCRM Cross-Site Scripting (CVE-2018-17784)

A cross-site scripting vulnerability exists in SugarCRM 6.5.26. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...

4.3CVSS4.9AI score0.04353EPSS
Exploits5
exploitpack
exploitpack
added 2018/10/12 12:0 a.m.45 views

SugarCRM 6.5.26 - Cross-Site Scripting

SugarCRM 6.5.26 - Cross-Site Scripting Exploit Title: SugarCRM 6.5.26 - Cross-Site Scripting Date: 2018-09-29 Exploit Author: Purplemet Security Author Website: https://www.purplemet.com/ Vendor Homepage: https://www.sugarcrm.com/ Software Link: https://sourceforge.net/projects/sugarcrm/ Version:...

4.3CVSS0.04353EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/10/12 12:0 a.m.34 views

SugarCRM 6.5.26 Cross Site Scripting

Exploit Title: SugarCRM 6.5.26 - Cross-Site Scripting Date: 2018-09-29 Exploit Author: Purplemet Security Author Website: https://www.purplemet.com/ Vendor Homepage: https://www.sugarcrm.com/ Software Link: https://sourceforge.net/projects/sugarcrm/ Version: 6.5.26 Tested on: Ubuntu 16.04 CVE :...

6.3AI score0.04353EPSS
Exploits5
0day.today
0day.today
added 2018/10/12 12:0 a.m.55 views

SugarCRM 6.5.26 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: SugarCRM 6.5.26 - Cross-Site Scripting Exploit Author: Purplemet Security Author Website: https://www.purplemet.com/ Vendor Homepage: https://www.sugarcrm.com/ Software Link: https://sourceforge.net/projects/sugarcrm/ Version:...

0.1AI score0.04353EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/10/12 12:0 a.m.537 views

SugarCRM 6.5.26 - Cross-Site Scripting

Exploit Title: SugarCRM 6.5.26 - Cross-Site Scripting Date: 2018-09-29 Exploit Author: Purplemet Security Author Website: https://www.purplemet.com/ Vendor Homepage: https://www.sugarcrm.com/ Software Link: https://sourceforge.net/projects/sugarcrm/ Version: 6.5.26 Tested on: Ubuntu 16.04 CVE :...

6.1CVSS6.5AI score0.04353EPSS
Exploits5
NVD
NVD
added 2018/10/10 9:29 p.m.18 views

CVE-2018-17784

Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack on a targeted system...

6.1CVSS6.1AI score0.04353EPSS
Exploits5References3
CVE
CVE
added 2018/10/10 9:0 p.m.65 views

CVE-2018-17784

CVE-2018-17784: SugarCRM Community Edition 6.5.26 contains multiple XSS vulnerabilities in YUI/FlashCanvas, via components such as uploader.swf, io.swf and flashcanvas.swf. An unauthenticated, remote attacker can inject arbitrary web scripts on a target system. Evidence across sources confirms th...

6.1CVSS6AI score0.04353EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder