Vulnerabilities > Vtiger > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-09-18 | CVE-2009-3257 | Permissions, Privileges, and Access Controls vulnerability in Vtiger CRM vtiger CRM before 5.1.0 allows remote authenticated users to bypass the permissions on the (1) Account Billing Address and (2) Shipping Address fields in a profile by creating a Sales Order (SO) associated with that profile. | 3.6 |
| 2007-07-06 | CVE-2007-3601 | Remote Security vulnerability in vtiger CRM vtiger CRM before 5.0.3, when a migrated build is used, allows remote authenticated users to read certain other users' calendar activities via a (1) home page or (2) event list view. | 2.1 |