VYPR

Sugar Suite

by Sugarcrm

CVEs (3)

  • CVE-2005-4086Dec 8, 2005
    risk 0.04cvss epss 0.07

    Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter.

  • CVE-2005-4087Dec 8, 2005
    risk 0.03cvss epss 0.04

    PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter.

  • CVE-2006-5082Sep 29, 2006
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Sugar Suite Open Source (SugarCRM) before 4.2.1 Patch C (20060917) has unspecified impact, related to code execution, and unspecified attack vectors.