EUVD-2019-7722

Malware in sbrugna...

CVE-2019-17309

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...

SugarCRM 9.0.1 PHP Object Injection

--------------------------------------------------------------- SugarCRM = 9.0.1 Multiple PHP Object Injection Vulnerabilities --------------------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Version 9.0.1 and prior versions, 8.0.3 and...

SugarCRM PHP code injection vulnerability (CNVD-2019-34428)

SugarCRM is a set of open source customer relationship management software . A PHP code injection vulnerability exists in the EmailMan module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit the vulnerability to execute arbitrary code...

CVE-2019-17309

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...

CVE-2019-17309

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...

CVE-2019-17309

CVE-2019-17309 affects SugarCRM: vulnerable in SugarCRM versions before 8.0.4 and 9.x before 9.0.2, in the EmailMan module. The underlying issue is PHP code injection via that module by an Admin user, enabling arbitrary code execution per the description. Remediation: upgrade to SugarCRM 8.0.4 or...

CVE-2019-17309

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...