{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T12:23:39.962","vulnerabilities":[{"cve":{"id":"CVE-2004-1225","sourceIdentifier":"cve@mitre.org","published":"2005-01-10T05:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SQL injection vulnerability in SugarCRM Sugar Sales before 2.0.1a allows remote attackers to execute arbitrary SQL commands and gain privileges via the record parameter in a DetailView action to index.php, and record parameters in other functionality."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.0:*:*:*:*:*:*:*","matchCriteriaId":"4107E934-D5CF-4ABF-8CB6-0DA90F3D9A74"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.0f:*:*:*:*:*:*:*","matchCriteriaId":"85742E7F-C06C-46A5-9008-245BE6E4E0BF"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.0g:*:*:*:*:*:*:*","matchCriteriaId":"B820A83B-0F03-4523-9D4D-3EB2930B35F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1:*:*:*:*:*:*:*","matchCriteriaId":"49FA30E3-7572-4BCC-8EFA-9D259DF892E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1a:*:*:*:*:*:*:*","matchCriteriaId":"AFBB2BDD-5FA2-40E1-9395-A9DED672E3FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1b:*:*:*:*:*:*:*","matchCriteriaId":"022D7E5E-BCBC-4E14-9C0D-50E5DD237D76"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1c:*:*:*:*:*:*:*","matchCriteriaId":"22E73109-5473-417C-A003-7C1EE1DC3ABC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1d:*:*:*:*:*:*:*","matchCriteriaId":"F183CCFF-6D5B-43E7-A70F-E9AEA6E46880"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1e:*:*:*:*:*:*:*","matchCriteriaId":"1DA73438-7BA5-4668-90E2-2EECDBBB58A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.1f:*:*:*:*:*:*:*","matchCriteriaId":"A6C3E6DF-AE5C-4D7F-99B3-16C3967A6A60"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:1.5d:*:*:*:*:*:*:*","matchCriteriaId":"6BF53885-8C5B-4654-AB42-587290E58355"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:2.0.1:*:*:*:*:*:*:*","matchCriteriaId":"0A197BD9-85DD-47F2-B30B-6C7F372F6DCE"},{"vulnerable":true,"criteria":"cpe:2.3:a:sugarcrm:sugarcrm:2.0.1a:*:*:*:*:*:*:*","matchCriteriaId":"42F2BB29-5136-4F23-8D1B-0507A5FCBF13"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=110295433323795&w=2","source":"cve@mitre.org"},{"url":"http://www.gulftech.org/?node=research&article_id=00053-120104","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/11740","source":"cve@mitre.org","tags":["Exploit","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/18325","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=110295433323795&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.gulftech.org/?node=research&article_id=00053-120104","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/11740","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/18325","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}