CVE-2019-17303

SugarCRM security issues released

Overview : CVE-2019-17292 SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmse_Inbox module by an Admin

Overview : CVE-2019-17292 SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the pmse_Inbox module by an Admin

Contact Prophaze Labs:

USA : Suite 217, 691 S Milpitas Blvd,

Milpitas, CA - 95035

Mobile: +1 831- 217-6365

India : +91 7994 008 420

Australia: +61 8 7094 2020

Email : security@prophaze.com