CVE-2019-17305 – SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords m …

Vuln ID: CVE-2019-17305

Published:  2019-10-07  16:15:12Z

Description: SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the MergeRecords module by a Regular user.

Source: NVD.NIST.GOV

 

Tags