Saleslogix Security Vulnerabilities and Issues — Saleslogix CVE List

Lucene search

Best SoftwareSaleslogix

3 matches found

CVE•added 2005/02/20 5:0 a.m.•40 views

CVE-2004-1608

SQL injection vulnerability in SalesLogix 6.1 allows remote attackers to execute arbitrary SQL statements via the id parameter in a view operation.

7.5CVSS8.6AI score0.00963EPSS

CVE•added 2005/02/20 5:0 a.m.•39 views

CVE-2004-1610

SalesLogix 6.1 uses client-specified pathnames for writing certain files, which might allow remote authenticated users to create arbitrary files and execute code via the (1) vMME.AttachmentPath or (2) vMME.LibraryPath variables.

7.5CVSS7.3AI score0.01734EPSS

CVE•added 2005/02/20 5:0 a.m.•35 views

CVE-2004-1605

SalesLogix 6.1 allows remote attackers to bypass authentication by modifying the slxweb cookie to set user=Admin, teams=ADMIN!, and usertype=Administrator.

7.5CVSS7.4AI score0.01034EPSS