NVD

Id
50456  
Name
CVE-2009-3251  
Description
include/utils/ListViewUtils.php in vtiger CRM before 5.1.0 allows remote authenticated users to bypass intended access restrictions and read the (1) visibility, (2) location, and (3) recurrence fields of a calendar via a custom view.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2009-09-18  
Modified Date
2009-09-21  
Seq
2009-3251  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
255268 50456 CVE-2009-3251 http://trac.vtiger.com/cgi-bin/trac.cgi/changeset/12407  View
255269 50456 CVE-2009-3251 http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/4208  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57800 JVNDB-2007-006492 vtiger CRM の include/utils/ListViewUtils.php における制限を回避される脆弱性 vtiger CRM の include/utils/ListViewUtils.php には、制限を回避される、および以下を読まれる脆弱性が存在します。 CVE-2009-3251 40682 CVE-2009-3251 50456 4 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-006492.html 2007-10-04 2012-12-20 View