SQL injection vulnerability in SugarCRM Sugar Sales prior to 2.0.1a allows remote malicious users to execute arbitrary SQL commands and gain privileges via the record parameter in a DetailView action to index.php, and record parameters in other functionality.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sugarcrm sugarcrm 1.0g |
||
sugarcrm sugarcrm 1.1 |
||
sugarcrm sugarcrm 1.5d |
||
sugarcrm sugarcrm 2.0.1 |
||
sugarcrm sugarcrm 1.0 |
||
sugarcrm sugarcrm 1.0f |
||
sugarcrm sugarcrm 1.1e |
||
sugarcrm sugarcrm 1.1f |
||
sugarcrm sugarcrm 1.1c |
||
sugarcrm sugarcrm 1.1d |
||
sugarcrm sugarcrm 1.1a |
||
sugarcrm sugarcrm 1.1b |
||
sugarcrm sugarcrm 2.0.1a |