Max CVSS | 6.5 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-3604 | 4.0 |
vtiger CRM before 5.0.3 allows remote authenticated users with access to the Analytics DashBoard menu to bypass data restrictions and read the pipeline of the entire organization, possibly involving modules/Potentials/Potentials.php.
|
13-11-2008 - 06:42 | 06-07-2007 - 19:30 | |
CVE-2007-3603 | 6.5 |
SQL injection vulnerability in the dashboard (include/utils/SearchUtils.php) in vtiger CRM before 5.0.3 allows remote authenticated users to execute arbitrary SQL commands via the assigned_user_id parameter in a Potentials ListView action to index.ph
|
13-11-2008 - 06:42 | 06-07-2007 - 19:30 |