Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the export function by a Regular user.
Remediation
References
Related Vulnerabilities
WordPress Plugin Super Logos Showcase for WordPress Arbitrary File Upload (2.2)
WordPress Plugin WooCommerce Security Bypass (2.1.7)
WordPress Plugin WP Selected Text Sharer Multiple Vulnerabilities (1.0)
CrushFTP Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-18288)