VYPR
Unrated severityNVD Advisory· Published Sep 6, 2006· Updated Jun 16, 2026

CVE-2006-4588

CVE-2006-4588

Description

vtiger CRM 4.2.4, and possibly earlier, allows remote attackers to bypass authentication and access administrative modules via a direct request to index.php with a modified module parameter, as demonstrated using the Settings module.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Vtiger/Vtigercrm2 versions
    cpe:2.3:a:vtiger:vtiger_crm:4.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vtiger:vtiger_crm:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vtiger:vtiger_crm:4.2.4:*:*:*:*:*:*:*
  • Vtiger/CRMllm-fuzzy
    Range: <=4.2.4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.