Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-12-08T11:00:00
Updated: 2005-12-10T10:00:00
Reserved: 2005-12-08T00:00:00
Link: CVE-2005-4086
JSON object: View
NVD Information
Status : Modified
Published: 2005-12-08T11:03:00.000
Modified: 2011-03-08T02:27:40.347
Link: CVE-2005-4086
JSON object: View
Redhat Information
No data.
CWE