2005-11-26 02:00:00
mitre
PUBLISHED
The uploads module in vTiger CRM 4.2 and earlier allows remote attackers to upload arbitrary files, such as PHP files, via the add2db action.