CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2019/10/07 4:15 p.m.•10 views

CVE-2019-17308

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Emails module by a Regular user...

8.8CVSS8.9AI score0.00461EPSS

CVE-2019-17302

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the ModuleBuilder module by a Developer user...

8.8CVSS7.4AI score

NVD•added 2019/10/07 4:15 p.m.•13 views

CVE-2019-17303

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by a Developer user...

8.8CVSS8.9AI score0.00461EPSS

NVD•added 2019/10/07 4:15 p.m.•9 views

CVE-2019-17306

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Configurator module by an Admin user...

7.2CVSS7.3AI score0.00418EPSS

CVE-2019-17300

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Administration module by a Developer user...

8.8CVSS7.4AI score

NVD•added 2019/10/07 4:15 p.m.•7 views

CVE-2019-17309

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user...

7.2CVSS7.3AI score0.00473EPSS

NVD•added 2019/10/07 4:15 p.m.•8 views

CVE-2019-17307

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Tracker module by an Admin user...

7.2CVSS7.3AI score0.00418EPSS

NVD•added 2019/10/07 4:15 p.m.•8 views

CVE-2019-17310

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Campaigns module by an Admin user...

7.2CVSS7.3AI score0.00473EPSS

OSV•added 2019/10/07 4:15 p.m.•1 views

CVE-2019-17307

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Tracker module by an Admin user...

7.2CVSS7.2AI score0.00418EPSS

OSV•added 2019/10/07 4:15 p.m.•2 views

CVE-2019-17303

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by a Developer user...

8.8CVSS7.4AI score

OSV•added 2019/10/07 4:15 p.m.•2 views

CVE-2019-17304

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by an Admin user...

7.2CVSS5.8AI score

NVD•added 2019/10/07 4:15 p.m.•6 views

CVE-2019-17299

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Administration module by an Admin user...

7.2CVSS7.3AI score0.00473EPSS

7.2CVSS7.2AI score0.00473EPSS

CVE-2019-17299

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Administration module by an Admin user...

7.2CVSS7.2AI score0.00473EPSS

CVE-2019-17310

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Campaigns module by an Admin user...

Prion•added 2019/10/07 4:15 p.m.•17 views

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Campaigns module by an Admin user...

6.5CVSS7.2AI score0.00473EPSS

Prion•added 2019/10/07 4:15 p.m.•16 views

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the ModuleBuilder module by an Admin user...

6.5CVSS7.2AI score0.00418EPSS

Prion•added 2019/10/07 4:15 p.m.•16 views

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by a Regular user...

6.5CVSS8.8AI score0.00461EPSS

Prion•added 2019/10/07 4:15 p.m.•9 views

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the ModuleBuilder module by a Developer user...

6.5CVSS8.8AI score0.00461EPSS

Prion•added 2019/10/07 4:15 p.m.•9 views

Code injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by an Admin user...

6.5CVSS7.2AI score0.00418EPSS