Description
install/index.php in EspoCRM before 2.6.0 allows remote attackers to re-install the application via a 1 value in the installProcess parameter.
Remediation
References
Related Vulnerabilities
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-18650)
Lighttpd Resource Management Errors Vulnerability (CVE-2012-5533)
WordPress Plugin Chief Editor Multiple Vulnerabilities (3.7.1)
WordPress Plugin Email Before Download SQL Injection (3.4)
WordPress Plugin Booking Calendar Contact Form Multiple Vulnerabilities (1.0.23)