Full title: SugarCRM 12.x Remote Code Execution / Shell Upload Exploit 
Category: remote exploits
Platform: php
This Metasploit module exploits CVE-2023-22952, a remote code execution vulnerability in SugarCRM 11.0 Enterprise, Professional, Sell, Serve, and Ultimate versions prior to 11.0.5 and SugarCRM 12.0 Enterprise, Sell, and Serve versions prior to 12.0.2.

# 0day.today @ http://0day.today/