Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows directory traversal in the file function by a Regular user.
Remediation
References
Related Vulnerabilities
WordPress Plugin MapPress Maps for WordPress Security Bypass (2.54.5)
WordPress Plugin Cookie Bar Cross-Site Scripting (1.8.8)
WordPress Cryptographic Issues Vulnerability (CVE-2009-3622)
PHP Out-of-bounds Read Vulnerability (CVE-2015-2326)
WordPress Plugin Venture Event Manager Cross-Site Scripting (3.2.4)