Register

Forgot Password

Site FAQ

Home > IT Blogs > Harmonizing Regulatory Compliance and Risk Management > Spear Phishing For SugarCRM Customer Lists

>>VIEW ALL POSTS

Harmonizing Regulatory Compliance and Risk Management

Mar 10 2010 6:13PM GMT

Spear Phishing For SugarCRM Customer Lists

Posted by: Jeromie Jackson

Uncategorized

SugarCRM

I recently found a security vulnerability in SugarCRM which affects all versions prior to 5.5.0a and 5.2.0l. The vulnerability consists of a stored cross-site scripting vulnerability within the Documents section of the application. Full documentation of the exploit can be found at:

http://jeromiejackson.com/index.php/the-news/79-Spear-Phishing-SugarCRM-CustomerLists

Comment

RSS Feed

Email a friend

Comment on this Post

Leave a comment:

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags

Harmonizing Regulatory Compliance and Risk Management

Spear Phishing For SugarCRM Customer Lists

Comment on this Post

About This Blog

Browse This Blog’s Tags

Archives

Blog Roll

Subscribe to Alerts