modules/Calendar/Activity.php in Vtiger CRM 6.5.0 allows...
High severity
Unreviewed
Published
May 24, 2022
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
May 24, 2019
Published to the GitHub Advisory Database
May 24, 2022
Last updated
Apr 4, 2024
modules/Calendar/Activity.php in Vtiger CRM 6.5.0 allows SQL injection via the contactidlist parameter.
References