CVE-2006-0581

CVE-2006-0581

EPSS 1.8%

SQL injection vulnerability in Hosting Controller 6.1 Hotfix 2.8 allows remote authenticated users to execute arbitrary SQL commands via the (1) GatewayID parameter in an add action in AddGatewaySettings.asp and (2) IP parameter in IPManager.asp.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/18731 http://securitytracker.com/id?1015584 https://exchange.xforce.ibmcloud.com/vulnerabilities/24537 http://www.osvdb.org/22982 http://www.osvdb.org/22983 http://www.vupen.com/english/advisories/2006/0460