CVE List

CVE-2019-17309

Critical 7.2

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the EmailMan module by an Admin user.

Published October 7, 2019.

Affected software

Sugarcrm Sugarcrm

Reference links

Sign Up for Alerts