Description

SQL injection vulnerability in SugarCRM 4.5.1o and earlier, 5.0.0k and earlier, and 5.2.0g and earlier, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2009-2978

Related Vulnerabilities

Oracle Database Server Other Vulnerability (CVE-2001-0941)

MySQL CVE-2020-14814 Vulnerability (CVE-2020-14814)

SharePoint CVE-2021-28478 Vulnerability (CVE-2021-28478)

Apache HTTP Server Use After Free Vulnerability (CVE-2019-10082)

SharePoint CVE-2021-24104 Vulnerability (CVE-2021-24104)

Severity

High

Classification

CVE-2009-2978 CWE-138

Tags

Missing Update Known Vulnerabilities