• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

NVD-CWE-Other

CVE-2007-3601

February 26, 2023 by

vtiger CRM before 5.0.3, when a migrated build is used, allows remote authenticated users to read certain other users’ calendar activities via a (1) home page or (2) event list view.

CVE-2007-3602

February 26, 2023 by

The SOAP webservice in vtiger CRM before 5.0.3 does not ensure that authenticated accounts are active, which allows remote authenticated users with inactive accounts to access and modify data, as demonstrated by the Thunderbird plugin.

CVE-2007-3603

February 26, 2023 by

SQL injection vulnerability in the dashboard (include/utils/SearchUtils.php) in vtiger CRM before 5.0.3 allows remote authenticated users to execute arbitrary SQL commands via the assigned_user_id parameter in a Potentials ListView action to index.php.

CVE-2007-3604

February 26, 2023 by

vtiger CRM before 5.0.3 allows remote authenticated users with access to the Analytics DashBoard menu to bypass data restrictions and read the pipeline of the entire organization, possibly involving modules/Potentials/Potentials.php.

CVE-2007-3605

February 26, 2023 by

Stack-based buffer overflow in the kweditcontrol.kwedit.1 ActiveX control in FrontEndSapGuikwedit.dll in the EnjoySAP SAP GUI allows remote attackers to execute arbitrary code via a long argument to the PrepareToPostHTML function.

CVE-2007-3606

February 26, 2023 by

Heap-based buffer overflow in the rfcguisink.rfcguisink.1 ActiveX control in the EnjoySAP SAP GUI, on systems using ASCII versions, allows remote attackers to execute arbitrary code via a long first argument to the LaunchGui function.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 157
  • Go to page 158
  • Go to page 159
  • Go to page 160
  • Go to page 161
  • Interim pages omitted …
  • Go to page 940
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE