Vulnerabilities

CVE-2016-4834

by Fred · 31/07/2016

modules/Users/actions/Save.php in Vtiger CRM 6.4.0 and earlier does not properly restrict user-save actions, which allows remote authenticated users to create or modify user accounts via unspecified vectors.

Date published : 2016-07-31

http://www.securityfocus.com/bid/92076

http://code.vtiger.com/vtiger/vtigercrm/commit/7cdf9941197b4aa58114eafce3ce88fb418eb68c

Related

Tags: Cybersecurity Alert