CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-7731

Malware in sbrugna...

8.8CVSS8.6AI score0.00296EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-7705

Malware in sbrugna...

7.2CVSS7AI score0.00303EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 8:19 a.m.•8 views

CVE-2019-17292

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by an Admin user...

7.2CVSS8AI score0.00303EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:43 a.m.•3 views

CVE-2019-17318

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by a Regular user...

8.8CVSS8AI score0.00296EPSS

Exploits0References1

CNVD•added 2019/10/08 12:0 a.m.•1 views

SugarCRM pmse_Inbox Module SQL Injection Vulnerability

SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the pmseInbox module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...

8.8CVSS8AI score0.00296EPSS

Exploits0References1

CNVD•added 2019/10/08 12:0 a.m.•1 views

SugarCRM pmse_Inbox Module SQL Injection Vulnerability

7.2CVSS8AI score0.00303EPSS

Exploits0References1

NVD•added 2019/10/07 4:15 p.m.•7 views

CVE-2019-17292

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by an Admin user...

7.2CVSS7.5AI score0.00303EPSS

Exploits0References1

Prion•added 2019/10/07 4:15 p.m.•13 views

Sql injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by an Admin user...

6.5CVSS7.4AI score0.00303EPSS

Exploits0References1Affected Software1

NVD•added 2019/10/07 3:15 p.m.•7 views

CVE-2019-17318

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by a Regular user...

8.8CVSS9.1AI score0.00296EPSS

Exploits0References1

Prion•added 2019/10/07 3:15 p.m.•14 views

Sql injection

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmseInbox module by a Regular user...

6.5CVSS9AI score0.00296EPSS

Exploits0References1Affected Software1

CVE•added 2019/10/07 3:6 p.m.•38 views

CVE-2019-17292

CVE-2019-17292: SugarCRM versions pre-8.0.4 and 9.x pre-9.0.2 are vulnerable to SQL injection via the pmse_Inbox module, exploitable by an Admin user. This is supported by multiple connected records (NVD, RH, CNVD, CVE lists). The vulnerability is due to improper input handling in that module and...

7.2CVSS7.4AI score0.00303EPSS

Exploits0References1Affected Software1