This page lists publicly disclosed CVE vulnerabilities affecting sugarcrm sugar_suite (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-5082 | Unspecified vulnerability in Sugar Suite Open Source (SugarCRM) before 4.2.1 Patch C (20060917) has unspecified impact, related to code execution, and unspecified attack vectors. | [email protected] | 7.5 | 2.10% | 2006-09-28 | 2026-06-16 |
| CVE-2005-4087 | PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter. | [email protected] | 7.5 | 3.73% | 2005-12-08 | 2026-06-16 |
| CVE-2005-4086 | Directory traversal vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to include arbitrary local files via ".." sequences in the beanFiles array parameter. | [email protected] | 5.0 | 7.33% | 2005-12-08 | 2026-06-16 |