) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:vtiger:vtiger_crm:4.2:patch1:*:*:*:*:*:*
- CPE Name Search: true
There are 42 matching records.
Displaying matches 41 through 42.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2005-3823 |
The Users module in vTiger CRM 4.2 and earlier allows remote attackers to execute arbitrary PHP code via an arbitrary file in the templatename parameter, which is passed to the eval function. Published: November 25, 2005; 9:03:00 PM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 7.5 HIGH |
| CVE-2005-3824 |
The uploads module in vTiger CRM 4.2 and earlier allows remote attackers to upload arbitrary files, such as PHP files, via the add2db action. Published: November 25, 2005; 9:03:00 PM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 5.0 MEDIUM |