CVE-2019-17317 – SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP object injection in the UpgradeWizar …

Vuln ID: CVE-2019-17317

Published:  2019-10-07  15:15:11Z

Description: SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP object injection in the UpgradeWizard module by an Admin user.

Source: NVD.NIST.GOV

 

Tags