CVE-2018-5715
MEDIUM NUCLEISugarCRM 3.5.1 - Cross-Site Scripting via Query String Parameter Name
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-5715. PoCs published by Guilherme Assmann. A Nuclei detection template is also available.
AI-analyzed exploit summary The exploit demonstrates a reflected XSS vulnerability in SugarCRM 3.5.1 via the 'key' parameter in phpprint.php. The lack of encoding allows injection of malicious scripts through crafted URLs.
Description
phprint.php in SugarCRM 3.5.1 has XSS via a parameter name in the query string (aka a $key variable).
Exploits (1)
exploitdb
WORKING POC
by Guilherme Assmann · textwebappsphp
https://www.exploit-db.com/exploits/43683
The exploit demonstrates a reflected XSS vulnerability in SugarCRM 3.5.1 via the 'key' parameter in phpprint.php. The lack of encoding allows injection of malicious scripts through crafted URLs.
Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:
SugarCRM 3.5.1
No auth needed
Prerequisites:
Access to the vulnerable SugarCRM instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Nuclei Templates (1)
SugarCRM 3.5.1 - Cross-Site Scripting
MEDIUMby edoardottt
Shodan:
http.html:"SugarCRM Inc. All Rights Reserved" || http.title:sugarcrm || http.html:"sugarcrm inc. all rights reserved"
FOFA:
body="sugarcrm inc. all rights reserved" || title=sugarcrm
References (2)
Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/43683/
Exploit, Third Party Advisory x_refsource_misc
https://m4k4br0.github.io/sugarcrm-xss/
Scores
CVSS v3
6.1
EPSS
0.0704
EPSS Percentile
93.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (1)
sugarcrm/sugarcrm
3.5.1
Published
Jan 16, 2018
Tracked Since
Feb 18, 2026