Summary
vtiger CRM is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to bypass the authentication process, download the database backup and modify configurations settings.
vtiger CRM 5.2.1 is vulnerable
other versions may also be affected.
Solution
Vendor updates are available. Please see the references for details.
References
Updated on 2017-03-28