CVE-2005-0302

CVE-2005-0302

EPSS 1.3%

SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP header.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://marc.info/?l=bugtraq&m=110636597832556&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19013 http://www.securiteam.com/windowsntfocus/5TP0Q0UEKI.html