| Name | sugarcrm_fileupload |
| CVE | CVE-2009-2146 |
| Exploit Pack | CANVAS |
| Description | sugarcrm_fileupload |
| Notes | CVE Name: CVE-2009-2146 VENDOR: http://www.sugarcrm.com Notes: Tested on SugarCRM 5.2.0c. This exploits needs a valid username and password for SugarCRM to exploit as the vulnerability lies in the compose email feature. Repeatability: Infinite References: ['http://www.ush.it/team/ush/hack-sugarcrm_520e/adv.txt'] CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2146 |
| Learn more about the CANVAS Exploit Pack here: CANVAS |