Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Emails module by a Regular user.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2016-3445 Vulnerability (CVE-2016-3445)
Envoy Proxy Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-32780)
WordPress Plugin Import Spreadsheets from Microsoft Excel Cross-Site Scripting (10.1.3)
WordPress 4.3.x Cross-Site Scripting Vulnerability (4.3 - 4.3.1)