CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3823

The Users module in vTiger CRM 4.2 and earlier allows remote attackers to execute arbitrary PHP code via an arbitrary file in the templatename parameter, which is passed to the eval function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.0%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2005-3823

Vtiger » Vtiger Crm » Version: 1.0

cpe:2.3:a:vtiger:vtiger_crm:1.0
Vtiger » Vtiger Crm » Version: 2.0

cpe:2.3:a:vtiger:vtiger_crm:2.0
Vtiger » Vtiger Crm » Version: 2.0.1

cpe:2.3:a:vtiger:vtiger_crm:2.0.1
Vtiger » Vtiger Crm » Version: 2.1

cpe:2.3:a:vtiger:vtiger_crm:2.1
Vtiger » Vtiger Crm » Version: 3.0

cpe:2.3:a:vtiger:vtiger_crm:3.0
Vtiger » Vtiger Crm » Version: 3.2

cpe:2.3:a:vtiger:vtiger_crm:3.2
Vtiger » Vtiger Crm » Version: 4

cpe:2.3:a:vtiger:vtiger_crm:4
Vtiger » Vtiger Crm » Version: 4.0

cpe:2.3:a:vtiger:vtiger_crm:4.0
Vtiger » Vtiger Crm » Version: 4.0.1

cpe:2.3:a:vtiger:vtiger_crm:4.0.1
Vtiger » Vtiger Crm » Version: 4.2

cpe:2.3:a:vtiger:vtiger_crm:4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3823

Products

Pricing

Contact Us