VYPR
Unrated severityNVD Advisory· Published Oct 7, 2019· Updated Aug 5, 2024

CVE-2019-17303

CVE-2019-17303

Description

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by a Developer user.

Affected products

2
  • SugarCRM/SugarCRMdescription
  • Range: <8.0.4 (9.x <9.0.2)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.