Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Emails module by a Regular user.
Remediation
References
Related Vulnerabilities
WordPress Plugin Images to WebP Multiple Vulnerabilities (1.8)
WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2058)
MySQL CVE-2022-21313 Vulnerability (CVE-2022-21313)
WordPress Plugin wordpress vertical image slider Multiple Vulnerabilities (1.0)