Common Vulnerabilities and Exposures SugarCRM CE unserialize PHP code execution in multiple files October 30, 2019 Overview : SugarCRM CE <= 6.3.1 contains scripts that use "unserialize()" with user controlled input which allows remote attackers to execute arbitrary PHP code. Affected ... View Post