2 matches found
Vtiger SQL Injection (CVE-2020-22807)
An SQL injection vulnerability exists in Vtiger. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2020-22807
Vulnerability summary (CVE-2020-22807) : vtiger CRM 7.2 is affected by a SQL Injection in the calendar exportdata feature caused by a faulty input handling (described as a union SQL injection). This could allow a remote attacker to execute arbitrary SQL commands on the vulnerable system (no authe...