CVE-2023-22952

Vulnerability Description

In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation.

Published Date

January 11, 2023

Last Modified

November 03, 2025

Source

NVD