vtiger CRM 'onlyforuser' Parameter SQL Injection Vulnerability

Bugtraq ID: 49948
Class: Input Validation Error
CVE: CVE-2011-4559
Remote: Yes
Local: No
Published: Oct 05 2011 12:00AM
Updated: Dec 05 2011 06:07PM
Credit: Aung Khant, YGN Ethical Hacker Group and Myanmar
Vulnerable: vtiger vtiger CRM 5.2.1
vtiger vtiger CRM 5.2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus