4 matches found
SugarCRM <= 9.0.0 XSS Vulnerability
SugarCRM is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sugarcrm:sugarcrm"...
CVE-2019-14974
SugarCRM Enterprise 9.0.0 allows mobile/error-not-supported-platform.html?desktopurl= XSS...
CVE-2019-14974
CVE-2019-14974 : SugarCRM Enterprise 9.0.0 has a cross-site scripting (XSS) vulnerability exploitable via the path mobile/error-not-supported-platform.html?desktop_url. The Nuclei template confirms the issue and describes impact as arbitrary JavaScript execution in the victim’s browser, enabling ...
SugarCRM Enterprise 9.0.0 - Cross-Site Scripting
SugarCRM Enterprise 9.0.0 - Cross-Site Scripting Exploit Title: 0Day UnauthenticatedXSS SugarCRM Enterprise Google Dork: N/A Date: 11.08.2019 Exploit Author: Ilca Lucian Florin Vendor Homepage: https://www.sugarcrm.com Version: 9.0.0 Tested on: Windows 7 / Internet Explorer 11 / Google Chrome 76...