CVE-2004-0272

CVE-2004-0272

EPSS 1.3%

SQL injection vulnerability in MaxWebPortal allows remote attackers to inject arbitrary SQL code and gain sensitive information via the SendTo parameter in Personal Messages.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://marc.info/?l=bugtraq&m=107643014606515&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15121 http://www.securityfocus.com/bid/9625