CVE-2018-17784

Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:sugarcrm:sugarcrm:*:*:*:*:community:*:*:*

Information

Published : 2018-10-10 14:29

Updated : 2020-03-13 12:15


NVD link : CVE-2018-17784

Mitre link : CVE-2018-17784


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

sugarcrm

  • sugarcrm