Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the export function by a Regular user.
Remediation
References
Related Vulnerabilities
WordPress Plugin Live Chat Unlimited Cross-Site Scripting (2.8.3)
WordPress Plugin Slider Hero with Animation, Video Background Cross-Site Scripting (8.4.3)
WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2)
WordPress Plugin GD Mail Queue Cross-Site Scripting (3.9.3)
WordPress Plugin Gallery-Flagallery Photo Portfolio Multiple Vulnerabilities (2.00)