CVE-2011-0745

EPSS 6.96% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-0745

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

SugarCRM before 6.1.3 does not properly handle reloads and direct requests for a warning page produced by a certain duplicate check, which allows remote authenticated users to discover (1) the names of customers via a ShowDuplicates action to the Accounts module, reachable through index.php; or (2) the names of contact persons via a ShowDuplicates action to the Contacts module, reachable through index.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

SugarCRM重复账号和联系人信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SugarCRM是美国SugarCRM公司的一套开源的客户关系管理系统（CRM）。该系统支持对不同的客户需求进行差异化营销、管理和分配销售线索，实现销售代表的信息共享和追踪。 SugarCRM 6.1.3之前版本没有为由某个重复检查操作产生的警告页面，正确处理重载和重定向请求。由于浏览或者创建账号和联系人时，modules/Accounts/ShowDuplicates.php和modules/Contacts/ShowDuplicates.php脚本没有校验用户的“List”权限。远程认证用户可以利用该

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-0745

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-0745

请登录查看更多情报信息。

http://www.redteam-pentesting.de/advisories/rt-sa-2011-002x_refsource_MISC
http://securityreason.com/securityalert/8141third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/46885vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1025222vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2011/0675vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/66110vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/517027/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2011-0745

Same Patch Batch · n/a · 2011-03-16 · 14 CVEs total

CVE-2011-0322		RSA Access Manager Server安全绕过漏洞
CVE-2011-0411		Postfix STARTTLS实现明文命令注入漏洞
CVE-2011-0442		EMC Avamar敏感信息泄露漏洞
CVE-2011-0648		EMC Avamar管理权限提升漏洞
CVE-2011-0751		Nazgul Nostromo目录遍历漏洞
CVE-2011-0889		HP Client Automation Enterprise任意代码执行漏洞
CVE-2011-1094		Red Hat KDE kdelibs IP地址SSL证书安全绕过漏洞
CVE-2011-1153		PHP phar扩展phar_object.c多个格式化字符串漏洞
CVE-2011-1428		Flashtux WeeChat SSL证书验证安全漏洞
CVE-2011-1429		Mutt SSL证书验证安全漏洞
CVE-2011-1430		Ipswitch IMail Server STARTTLS实现明文命令注入漏洞
CVE-2011-1431		Netqmail netqmail-1.06-tls补丁STARTTLS实现明文命令注入漏洞
CVE-2011-1432		SCO SCOoffice Server STARTTLS实现明文命令注入漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-0745

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-0745

I. Basic Information for CVE-2011-0745

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2011-0745

III. Intelligence Information for CVE-2011-0745

Same Patch Batch · n/a · 2011-03-16 · 14 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-0745

Leave a comment