VYPR
Unrated severityNVD Advisory· Published Oct 7, 2019· Updated Aug 5, 2024

CVE-2019-17311

CVE-2019-17311

Description

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows directory traversal in the attachment function by a Regular user.

Affected products

2
  • SugarCRM/SugarCRMdescription
  • Range: <=8.0.3, 9.0.0-9.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.