CVE-2007-6143
NONESQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the password parameter.
Publicado: 11/27/2007Actualizado: 4/9/2025
Descripción
SQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the password parameter.
Análisis IAImpulsado por IA
Productos Afectados
vucase_manager
Referencias
- http://aria-security.net/forum/showthread.php?t=448Exploit
- http://secunia.com/advisories/27779Vendor Advisory
- http://www.securityfocus.com/archive/1/484019/100/0/threaded
- http://www.securityfocus.com/bid/26523
- http://www.vupen.com/english/advisories/2007/3967
- http://aria-security.net/forum/showthread.php?t=448Exploit
- http://secunia.com/advisories/27779Vendor Advisory
- http://www.securityfocus.com/archive/1/484019/100/0/threaded
- http://www.securityfocus.com/bid/26523
- http://www.vupen.com/english/advisories/2007/3967