Description
SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Quotes module by a Regular user.
Remediation
References
Related Vulnerabilities
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0335)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3)
Ruby Use of Externally-Controlled Format String Vulnerability (CVE-2017-0898)