SugarCRM <= 6.3.1 Multiple PHP Object Injection Vulnerabilities

Description:

SugarCRM contains a flaw that is triggered when certain scripts fail to properly sanitize user-supplied input before being used in an unserialize() call. With a specially crafted serialized object an attacker might be able to create a cache file containing arbitrary PHP code abusing the __destruct() method of the SugarTheme class.

References:

• CVE-2012-0694
• BID-54169
• EDB-19381

Disclosure Date:

June 23, 2012