SugarCRM Community Edition 'unserialize()' Multiple PHP Code Execution Vulnerabilities

SugarCRM Community Edition 'unserialize()' Multiple PHP Code Execution Vulnerabilities

SugarCRM Community Edition is prone to multiple remote PHP code-execution vulnerabilities.

An attacker can exploit these issues to inject and execute arbitrary malicious PHP code in the context of the affected application. This may facilitate a compromise of the application and the underlying system; other attacks are also possible.

SugarCRM Community Edition versions 6.3.1 and prior are vulnerable.