CVE List

CVE-2019-17306

Critical 7.2

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Configurator module by an Admin user.

Published October 7, 2019.

Affected software

Get alerts for Sugarcrm Sugarcrm

Reference links