Sugarcrm: >> Sugar Suite >> 4.0_beta Security Vulnerabilities
Unspecified vulnerability in Sugar Suite Open Source (SugarCRM) before 4.2.1 Patch C (20060917) has unspecified impact, related to code execution, and unspecified attack vectors.
CVSS Score
7.5
EPSS Score
0.009
Published
2006-09-29
Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter.
CVSS Score
5.0
EPSS Score
0.106
Published
2005-12-08
PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter.
CVSS Score
7.5
EPSS Score
0.038
Published
2005-12-08