Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2007-3604

vtiger CRM before 5.0.3 allows remote authenticated users with access to the Analytics DashBoard menu to bypass data restrictions and read the pipeline of the entire organization, possibly involving modules/Potentials/Potentials.php.

  • Published: Jul 6, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-3604
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
vtiger / vtiger_crm - 5.0.2.x