Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-4086
HistoryDec 08, 2005 - 11:03 a.m.

CVE-2005-4086

2005-12-0811:03:00
[email protected]
web.nvd.nist.gov
2

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

High

EPSS

0.01

Percentile

83.4%

JSON

Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via “…” sequences in the beanFiles array parameter.

Affected configurations

Nvd
Node
sugarcrmsugar_suiteMatch3.5
OR
sugarcrmsugar_suiteMatch4.0_beta
VendorProductVersionCPE
sugarcrmsugar_suite3.5cpe:2.3:a:sugarcrm:sugar_suite:3.5:*:*:*:*:*:*:*
sugarcrmsugar_suite4.0_betacpe:2.3:a:sugarcrm:sugar_suite:4.0_beta:*:*:*:*:*:*:*

Related

cvelist 1
cve 1
openvas 2
nessus 1
exploitdb 2
cvelist
cvelist
CVE-2005-4086
2005-12-08 11:00:00
cve
cve
CVE-2005-4086
2005-12-08 11:03:00
openvas
openvas
SugarCRM <= 4.0 beta Remote File Inclusion Vulnerability
2006-03-26 00:00:00
SugarCRM <= 4.0 beta Remote File Inclusion Vulnerability
2006-03-26 00:00:00
nessus
nessus
SugarCRM <= 4.0 beta acceptDecline.php Remote File Inclusion
2005-12-10 00:00:00
exploitdb
exploitdb
SugarSuite Open Source 4.0beta - Remote Code Execution (2)
2005-12-08 00:00:00
SugarSuite Open Source 4.0beta - Remote Code Execution (1)
2005-12-07 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

High

EPSS

0.01

Percentile

83.4%

JSON
Related for NVD:CVE-2005-4086
cvelist1cve1openvas2nessus1exploitdb2