CVE-2009-3258 Information

Feb 14, 2021 cve

Description

vtiger CRM before 5.1.0 allows remote authenticated users with certain View privileges to delete (1) attachments (2) reports (3) filters (4) views and (5) tickets; insert (6) attachments (7) reports (8) filters (9) views and (10) tickets; and edit (11) reports (12) filters (13) views and (14) tickets via unspecified vectors.

Reference

http://forums.vtiger.com/viewtopic.php?t=15094 http://forums.vtiger.com/viewtopic.php?t=16756 http://secunia.com/advisories/36309 http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/5249

Share on: