SugarCRM (Multiple Products) Data Breach
SugarCRM (Multiple Products) experienced a data breach that was reported on February 2, 2023. Multiple SugarCRM products contain a remote code execution vulnerability in the EmailTemplates. Using a specially crafted request, custom PHP code can be injected through the EmailTemplates.
Key Facts
- Organization
- SugarCRM (Multiple Products)
- Date Reported
- February 2, 2023
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.