https://isitpatched.com/sugarcrm Security alerts for SugarCRM: newly-exploited CVEs and end-of-life events from IsItPatched. en Compiled by IsItPatched (isitpatched.com) from NVD, CISA KEV, EPSS and endoflife.date. IsItPatched (https://isitpatched.com) https://www.rssboard.org/rss-specification 15 https://isitpatched.com/icon-192.png https://isitpatched.com/sugarcrm Thu, 18 Jun 2026 00:34:29 GMT https://isitpatched.com/cve/CVE-2023-22952 sugarcrm|CVE-2023-22952 Severity: High (CVSS 8.8) · Improper input validation · Actively exploited (CISA KEV) · EPSS 80% Exploited IsItPatched Wed, 11 Jan 2023 09:15:08 GMT https://isitpatched.com/cve/CVE-2020-7472 sugarcrm|CVE-2020-7472 Severity: Critical (CVSS 9.8) · Improper input validation · EPSS 3% Critical IsItPatched Thu, 12 Nov 2020 18:15:16 GMT https://isitpatched.com/cve/CVE-2012-0694 sugarcrm|CVE-2012-0694 Severity: Critical (CVSS 9.8) · Improper input validation · EPSS 67% Critical IsItPatched Tue, 29 Oct 2019 21:15:10 GMT https://isitpatched.com/cve/CVE-2019-17314 sugarcrm|CVE-2019-17314 Severity: High (CVSS 7.2) · Path traversal · EPSS 2% High IsItPatched Mon, 07 Oct 2019 16:15:13 GMT https://isitpatched.com/cve/CVE-2019-17313 sugarcrm|CVE-2019-17313 Severity: High (CVSS 8.8) · Path traversal · EPSS 2% High IsItPatched Mon, 07 Oct 2019 16:15:13 GMT https://isitpatched.com/cve/CVE-2019-17312 sugarcrm|CVE-2019-17312 Severity: High (CVSS 8.8) · Path traversal · EPSS 2% High IsItPatched Mon, 07 Oct 2019 16:15:13 GMT https://isitpatched.com/cve/CVE-2019-17311 sugarcrm|CVE-2019-17311 Severity: High (CVSS 8.8) · Path traversal · EPSS 2% High IsItPatched Mon, 07 Oct 2019 16:15:13 GMT https://isitpatched.com/cve/CVE-2019-14974 sugarcrm|CVE-2019-14974 Severity: Medium (CVSS 6.1) · Cross-site scripting (XSS) · EPSS 31% Medium IsItPatched Wed, 14 Aug 2019 16:15:12 GMT https://isitpatched.com/cve/CVE-2018-17784 sugarcrm|CVE-2018-17784 Severity: Medium (CVSS 6.1) · Cross-site scripting (XSS) · EPSS 4% Medium IsItPatched Wed, 10 Oct 2018 21:29:02 GMT https://isitpatched.com/cve/CVE-2014-3244 sugarcrm|CVE-2014-3244 Severity: Critical (CVSS 9.8) · XML external entity (XXE) · EPSS 5% Critical IsItPatched Thu, 01 Feb 2018 17:29:00 GMT https://isitpatched.com/cve/CVE-2018-5715 sugarcrm|CVE-2018-5715 Severity: Medium (CVSS 6.1) · Cross-site scripting (XSS) · EPSS 7% Medium IsItPatched Tue, 16 Jan 2018 20:29:00 GMT https://isitpatched.com/cve/CVE-2017-14509 sugarcrm|CVE-2017-14509 Severity: High (CVSS 8.8) · Improper input validation · EPSS 6% High IsItPatched Sun, 17 Sep 2017 21:29:00 GMT https://isitpatched.com/cve/CVE-2017-14508 sugarcrm|CVE-2017-14508 Severity: High (CVSS 8.8) · SQL injection · EPSS 3% High IsItPatched Sun, 17 Sep 2017 21:29:00 GMT https://isitpatched.com/cve/CVE-2015-5946 sugarcrm|CVE-2015-5946 Severity: High (CVSS 7.8) · CWE-184 · EPSS 2% High IsItPatched Mon, 07 Aug 2017 20:29:00 GMT https://isitpatched.com/cve/CVE-2011-4833 sugarcrm|CVE-2011-4833 Severity: High (CVSS 7.5) · SQL injection · EPSS 2% High IsItPatched Thu, 15 Dec 2011 03:57:34 GMT https://isitpatched.com/cve/CVE-2011-0745 sugarcrm|CVE-2011-0745 Severity: Medium (CVSS 4) · Improper input validation · EPSS 6% Medium IsItPatched Wed, 16 Mar 2011 22:55:02 GMT https://isitpatched.com/cve/CVE-2009-2146 sugarcrm|CVE-2009-2146 Severity: Medium (CVSS 6) · EPSS 21% Medium IsItPatched Mon, 22 Jun 2009 14:30:00 GMT https://isitpatched.com/cve/CVE-2008-2045 sugarcrm|CVE-2008-2045 Severity: Medium (CVSS 5) · Path traversal · EPSS 5% Medium IsItPatched Thu, 01 May 2008 19:05:00 GMT https://isitpatched.com/cve/CVE-2006-2460 sugarcrm|CVE-2006-2460 Severity: Medium (CVSS 6.4) · EPSS 10% Medium IsItPatched Fri, 19 May 2006 10:02:00 GMT https://isitpatched.com/cve/CVE-2004-1225 sugarcrm|CVE-2004-1225 Severity: High (CVSS 10) · EPSS 2% High IsItPatched Mon, 10 Jan 2005 05:00:00 GMT