Unrated severityNVD Advisory· Published Oct 22, 2021· Updated Aug 4, 2024
CVE-2020-28956
CVE-2020-28956
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Sales module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary address state or alternate address state input fields.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SugarCRM/SugarCRMdescription
Patches
Vulnerability mechanics
References
1- www.vulnerability-lab.com/get_content.phpmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.