Description
Cross-site scripting (XSS) vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2738 Vulnerability (CVE-2019-2738)
WordPress Plugin Comprehensive Google Map Cross-Site Request Forgery (9.1.3)
Oracle JRE CVE-2012-1723 Vulnerability (CVE-2012-1723)
MongoDb Improper Input Validation Vulnerability (CVE-2018-20804)
Oracle Database Server CVE-2014-4296 Vulnerability (CVE-2014-4296)