CVE-2005-4087

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/12/2005
Last modified:
03/04/2025

Description

PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:sugarcrm:sugar_suite:3.5:*:*:*:*:*:*:*
cpe:2.3:a:sugarcrm:sugar_suite:4.0_beta:*:*:*:*:*:*:*