Back to directory
WRITEUP #6315

Tales of SugarCRM Security Horrors

SQL InjectionPHP object injectionAuthentication bypass
byEgidio Romano / EgiX
Program
SugarCRM
Published
Apr 23, 2017
Added to HackDex
Sep 15, 2022
Read Full Writeuphttp://karmainsecurity.com/tales-of-sugarcrm-security-horrors
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670
SQL InjectionReverse engineering
Bypassing airport security via SQL injection
SQL Injection
WordPress GiveWP POP to RCE (CVE-2024-5932)
RCEPHP pop chain

Built with ❤️ by Shubham Rawat