Description
phprint.php in SugarCRM 3.5.1 has XSS via a parameter name in the query string (aka a $key variable).
Remediation
References
Related Vulnerabilities
Apache HTTP Server Other Vulnerability (CVE-2003-0083)
Liferay DXP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-4581)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2165)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5769)
phpBB Improper Input Validation Vulnerability (CVE-2006-2220)