← voltar
CVE-2004-1226

CVE-2004-1226

EPSS 1.2%
SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to gain sensitive information via certain requests to scripts that contain invalid input, which reveals the path in an error message, as demonstrated using phprint.php with an empty module parameter.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://marc.info/?l=bugtraq&m=110295433323795&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18447