Name | sugarcrm_fileupload |
CVE | CVE-2009-2146 |
Exploit Pack | CANVAS |
Description | sugarcrm_fileupload |
Notes | CVE Name: CVE-2009-2146 VENDOR: http://www.sugarcrm.com Notes: Tested on SugarCRM 5.2.0c. This exploits needs a valid username and password for SugarCRM to exploit as the vulnerability lies in the compose email feature. Repeatability: Infinite References: ['http://www.ush.it/team/ush/hack-sugarcrm_520e/adv.txt'] CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2146 |
Learn more about the CANVAS Exploit Pack here: CANVAS |