Full Disclosure

[KIS-2016-05] SugarCRM <= 6.5.18 Two PHP Code Injection Vulnerabilities

June 23, 2016 007admin Leave a comment

Posted by Egidio Romano on Jun 23

———————————————————
SugarCRM <= 6.5.18 Two PHP Code Injection Vulnerabilities
———————————————————

[-] Software Link:

http://www.sugarcrm.com/

[-] Affected Versions:

Version 6.5.18 CE and prior versions.

[-] Vulnerabilities Description:

1) The vulnerable code is located in the /include/utils/array_utils.php script:

99. function…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information