Lucene search
MitreCVELIST:CVE-2023-22952HistoryJan 11, 2023 - 12:00 a.m.
CVE-2023-22952
2023-01-1100:00:00
mitre
www.cve.org
8
sugarcrm
emailtemplates
php injection
vulnerability
missing input validation
In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation.
Related
prion
prion
Input validation
2023-01-11 09:15:00
zdt
zdt
SugarCRM 12.x Remote Code Execution / Shell Upload Exploit
2023-03-10 00:00:00
cve
cve
CVE-2023-22952
2023-01-11 09:15:08
metasploit
metasploit
SugarCRM unauthenticated Remote Code Execution (RCE)
2023-03-09 15:28:03
packetstorm
packetstorm
SugarCRM 12.x Remote Code Execution / Shell Upload
2023-03-10 00:00:00
attackerkb
attackerkb
CVE-2023-22952
2023-01-11 00:00:00
nvd
nvd
CVE-2023-22952
2023-01-11 09:15:08
cisa_kev
cisa_kev
Multiple SugarCRM Products Remote Code Execution Vulnerability
2023-02-02 00:00:00
openvas
openvas
SugarCRM 11.0.x < 11.0.5, 12.0.x < 12.0.2 RCE Vulnerability
2023-01-12 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-03-10 19:00:00
Metasploit 2023 Annual Wrap-Up: Dec. 29, 2023
2023-12-29 19:38:15
thn
thn
Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability
2023-01-14 08:11:00
qualysblog
qualysblog
Qualys Survey of Top 10 Exploited Vulnerabilities in 2023
2023-09-26 13:04:00
2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is
2023-12-19 15:00:00