CVE-2018-17784

Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.

Date published : 2018-10-10

https://www.exploit-db.com/exploits/45594/

https://twitter.com/purplemet/status/1043979681186369537