CVE-2007-3604

CVE-2007-3604 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

vtiger CRM before 5.0.3 allows remote authenticated users with access to the Analytics DashBoard menu to bypass data restrictions and read the pipeline of the entire organization, possibly involving modules/Potentials/Potentials.php.

Learn more about our Crm Penetration Testing.