CVE-2023-46815

EPSS 0.24% · P47 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-46815

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in SugarCRM 12 before 12.0.4 and 13 before 13.0.2. An Unrestricted File Upload vulnerability has been identified in the Notes module. By using a crafted request, custom PHP code can be injected via the Notes module because of missing input validation. An attacker with regular user privileges can exploit this.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

SugarCRM 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SugarCRM是美国SugarCRM公司的一套开源的客户关系管理系统（CRM）。该系统支持对不同的客户需求进行差异化营销、管理和分配销售线索，实现销售代表的信息共享和追踪。 SugarCRM 12 12.0.4 之前、SugarCRM 13 13.0.2之前版本存在安全漏洞，该漏洞源于由于缺少输入验证，可以通过 Notes 模块注入自定义 PHP 代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-46815

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-46815

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-10-27 · 27 CVEs total

CVE-2023-34057	7.8 HIGH	VMware Tools 安全漏洞
CVE-2023-34059	7.4 HIGH	VMware Tools 安全漏洞
CVE-2023-34058	7.1 HIGH	VMware Tools 安全漏洞
CVE-2023-46393		gougucms 安全漏洞
CVE-2023-46853		Memcached 安全漏洞
CVE-2023-46852		Memcached 安全漏洞
CVE-2023-46818		ISPConfig 安全漏洞
CVE-2023-46816		SugarCRM 安全漏洞
CVE-2023-46813		Linux kernel 安全漏洞
CVE-2023-46587		XnView Classic 安全漏洞
CVE-2023-46510		ZIONCOM Technology A7000R 安全漏洞
CVE-2023-46490		Cacti SQL注入漏洞
CVE-2023-46407		FFmpeg 安全漏洞
CVE-2023-46509		Contec SolarView Compact 安全漏洞
CVE-2023-35794		Cassia Networks Access Controller 安全漏洞
CVE-2022-34834		VERMEG Agile Reporter 安全漏洞
CVE-2022-34833		VERMEG Agile Reporter 安全漏洞
CVE-2022-34832		VERMEG Agile Reporter 安全漏洞
CVE-2023-46375		Nature Easy Soft Network Technology ZenTao 跨站请求伪造漏洞
CVE-2023-46376		Nature Easy Soft Network Technology ZenTao 信息泄露漏洞

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-46815

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-46815

I. Basic Information for CVE-2023-46815

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-46815

III. Intelligence Information for CVE-2023-46815

Same Patch Batch · n/a · 2023-10-27 · 27 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-46815

Leave a comment