-
Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.
sugarcrm
-
1
Exploits SugarCRM 9.0.1 Phar Deserialization
SugarCRM versions 9.0.1 and below suffer from multiple phar deserialization vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 deserialization exploits phar sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 PHP Object Injection
SugarCRM versions 9.0.1 and below suffer from multiple php object injection vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 exploits injection object php sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 PHP Code Injection
SugarCRM versions 9.0.1 and below suffer from multiple PHP code injection vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 code exploits injection php sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 Path Traversal
SugarCRM versions 9.0.1 and below suffer from multiple path traversal vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 exploits path sugarcrm traversal
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 Broken Access Controls
SugarCRM versions 9.0.1 and below suffer from multiple broken access control vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 access broken controls exploits sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 SQL Injection
SugarCRM versions 9.0.1 and below suffer from multiple remote SQL injection vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 exploits injection sql sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 9.0.1 Cross Site Scripting
SugarCRM versions 9.0.1 and below suffer from multiple reflective cross site scripting vulnerabilities. View the full article- 1337day-Exploits
- Thread
- 9.0.1 cross exploits scripting site sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM Web Logic Hooks Module Path Traversal
SugarCRM versions prior to 7.9.5.0, 8.0.2, and 8.2.0 suffer from a path traversal vulnerability. User input passed through the "webhook_target_module" parameter is not properly sanitized before being used to save PHP code into the hooks file through the Web Logic Hooks module. This can be...- 1337day-Exploits
- Thread
- exploits hooks logic module path sugarcrm traversal web
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM Web Logic Hooks Module PHP Code Injection
SugarCRM versions prior to 7.9.5.0, 8.0.2, and 8.2.0 suffer from a PHP code injection vulnerability. User input passed through the "trigger_event" parameter is not properly sanitized before being used to save PHP code into the 'logic_hooks.php' file through the Web Logic Hooks module. This can...- 1337day-Exploits
- Thread
- code exploits hooks injection logic module php sugarcrm web
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM addLabels PHP Code Injection
SugarCRM versions prior to 7.9.5.0, 8.0.2, and 8.2.0 suffer from a PHP code injection vulnerability. User input passed through key values of the 'labels_' parameters is not properly sanitized before being used to save PHP code within the "ParserLabel::addLabels()" method when saving labels...- 1337day-Exploits
- Thread
- addlabels code exploits injection php sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM WorkFlow PHP Code Injection
SugarCRM versions prior to 7.9.4.0 and 7.11.0.0 suffer from a PHP code injection vulnerability in the WorkFlow module. User input passed through the $_POST['base_module'] parameter to the "Save" action of the WorkFlow module is not properly sanitized before being used to write data into the...- 1337day-Exploits
- Thread
- code exploits injection php sugarcrm workflow
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM SaveDropDown PHP Code Injection
SugarCRM versions prior to 7.9.5.0, 8.0.2, and 8.2.0 suffer from a PHP code injection vulnerability. User input passed through key values of the 'list_value' JSON parameter is not properly sanitized before being used to save PHP code when adding/saving dropdowns through the Module Builder. This...- 1337day-Exploits
- Thread
- code exploits injection php savedropdown sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM portal_get_related_notes SQL Injection
SugarCRM versions prior to 7.9.4.0 and 7.11.0.0 suffer from a remote SQL injection vulnerability. The vulnerability is located within the SOAP API, specifically into the "portal_get_related_notes()" SOAP function. User input passed through the "order_by" parameter is not properly sanitized...- 1337day-Exploits
- Thread
- exploits injection sql sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM ConnectorsController Server-Side Request Forgery
SugarCRM versions prior to 7.9.4.0 and 7.11.0.0 suffer from a server-side request forgery vulnerability. The vulnerability is located within the "ConnectorsController::action_CallRest()" method. User input passed through the "url" request parameter is not properly sanitized before being used in...- 1337day-Exploits
- Thread
- connectorscontroller exploits forgery request server-side sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
-
1
Exploits SugarCRM 6.5.26 Cross Site Scripting
SugarCRM version 6.5.26 suffers from a cross site scripting vulnerability. View the full article- 1337day-Exploits
- Thread
- 6.5.26 cross exploits scripting site sugarcrm
- Replies: 0
- Forum: Exploit Development & Bugs
sugarcrm
