7 matches found
EUVD-2017-6011
Malware in sbrugna...
FreeBSD : sugarcrm -- multiple vulnerabilities (3b776502-f601-44e0-87cd-b63f1b9ae42a)
sugarcrm developers report : An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. Several areas have been identified in the Documents and Emails module that could allow an authenticated user to perform SQL injection...
CVE-2017-14510
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. The WebToLeadCapture functionality is found vulnerable to unauthenticated cross-site scripting XSS attacks. This attack vector is mitigated by proper validating t...
CVE-2017-14510
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. The WebToLeadCapture functionality is found vulnerable to unauthenticated cross-site scripting XSS attacks. This attack vector is mitigated by proper validating t...
Cross site scripting
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. The WebToLeadCapture functionality is found vulnerable to unauthenticated cross-site scripting XSS attacks. This attack vector is mitigated by proper validating t...
CVE-2017-14510
An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. The WebToLeadCapture functionality is found vulnerable to unauthenticated cross-site scripting XSS attacks. This attack vector is mitigated by proper validating t...
sugarcrm -- multiple vulnerabilities
sugarcrm developers report: An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. Several areas have been identified in the Documents and Emails module that could allow an authenticated user to perform SQL injection,...