CVE-2016-10754

Publication date

2019-05-24 17:40:48

Family

mitre

State

PUBLISHED

Description

modules/Calendar/Activity.php in Vtiger CRM 6.5.0 allows SQL injection via the contactidlist parameter.