vtiger CRM before 5.1.0 allows remote authenticated users, with certain View privileges, to delete (1) attachments, (2) reports, (3) filters, (4) views, and (5) tickets; insert (6) attachments, (7) reports, (8) filters, (9) views, and (10) tickets; and edit (11) reports, (12) filters, (13) views, and (14) tickets via unspecified vectors.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Vtiger_crm | Vtiger | 1.0 (including) | 1.0 (including) |
| Vtiger_crm | Vtiger | 2.0 (including) | 2.0 (including) |
| Vtiger_crm | Vtiger | 2.0.1 (including) | 2.0.1 (including) |
| Vtiger_crm | Vtiger | 2.1 (including) | 2.1 (including) |
| Vtiger_crm | Vtiger | 3 (including) | 3 (including) |
| Vtiger_crm | Vtiger | 3.0 (including) | 3.0 (including) |
| Vtiger_crm | Vtiger | 3.0-beta (including) | 3.0-beta (including) |
| Vtiger_crm | Vtiger | 3.2 (including) | 3.2 (including) |
| Vtiger_crm | Vtiger | 4 (including) | 4 (including) |
| Vtiger_crm | Vtiger | 4-beta (including) | 4-beta (including) |
| Vtiger_crm | Vtiger | 4-rc1 (including) | 4-rc1 (including) |
| Vtiger_crm | Vtiger | 4.0 (including) | 4.0 (including) |
| Vtiger_crm | Vtiger | 4.0.1 (including) | 4.0.1 (including) |
| Vtiger_crm | Vtiger | 4.2 (including) | 4.2 (including) |
| Vtiger_crm | Vtiger | 4.2.4 (including) | 4.2.4 (including) |
| Vtiger_crm | Vtiger | 5.0.0 (including) | 5.0.0 (including) |
| Vtiger_crm | Vtiger | 5.0.2 (including) | 5.0.2 (including) |
| Vtiger_crm | Vtiger | 5.0.3 (including) | 5.0.3 (including) |
| Vtiger_crm | Vtiger | 5.0.4 (including) | 5.0.4 (including) |
| Vtiger_crm | Vtiger | 5.1.0 (including) | 5.1.0 (including) |
| Vtiger_crm | Vtiger | 5.1.0-rc (including) | 5.1.0-rc (including) |