← volver
CVE-2006-3236

CVE-2006-3236

EPSS 1.4%
Multiple SQL injection vulnerabilities in thinkWMS 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in (a) index.php or (b) printarticle.php, and the (2) catid parameter in index.php.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://pridels0.blogspot.com/2006/06/thinkwms-sql-injection-vuln.htmlhttp://secunia.com/advisories/20747http://securitytracker.com/id?1016355https://exchange.xforce.ibmcloud.com/vulnerabilities/27270http://www.osvdb.org/26742http://www.osvdb.org/26743http://www.securityfocus.com/bid/18567http://www.vupen.com/english/advisories/2006/2470