CVE-2019-17319
CVE-2019-17319 affects SugarCRM before 8.0.4 and 9.x before 9.0.2, where a SQL injection flaw in the Emails module can be exploited by a Regular user. The connected sources concur on the product versions and vulnerable component (Emails module) and describe the underlying issue as SQL injection. ...