[Vtigercrm-commits] [vtiger development] #7059: empty record creation bug
vtiger development
vtiger-tickets at trac.vtiger.com
Wed Apr 6 01:35:47 PDT 2011
#7059: empty record creation bug
--------------------------+-------------------------------------------------
Reporter: carlo.beschi | Owner: developer
Type: defect | Status: new
Priority: unassigned | Milestone: Unassigned
Component: vtigercrm | Version: 5.2.1
Keywords: |
--------------------------+-------------------------------------------------
vtiger suffers from the same "emtpy record creation allowed" bug which was
recently discovered in sugar CRM.
Simply make an HTTP request via browser, using an url like:
index.php?action=Save&module=Accounts&record=&return_module=Accounts&return_action=detailview
See also:
http://musarra.wordpress.com/2011/03/24/security-bug-create-a-empty-
record-in-sugarcrm/
http://www.sugarcrm.com/crm/support/bugs.html?bug_number=43159#issue_43159
--
Ticket URL: <http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/7059>
vtiger development <http://trac.vtiger.com/>
vtigerCRM
More information about the vtigercrm-commits
mailing list