Описание
Cross-site scripting (XSS) vulnerability in SugarCRM Open Source 4.5.0f and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in crafted email messages.
Ссылки
- URL Repurposed
- PatchVendor Advisory
- URL Repurposed
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.5.0f (включая)
cpe:2.3:a:sugarcrm:sugarcrm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.0157
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 19 лет назад
Cross-site scripting (XSS) vulnerability in SugarCRM Open Source 4.5.0f and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in crafted email messages.
debian
почти 19 лет назад
Cross-site scripting (XSS) vulnerability in SugarCRM Open Source 4.5.0 ...
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in SugarCRM Open Source 4.5.0f and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in crafted email messages.
EPSS
Процентиль: 80%
0.0157
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other