CVE-2006-7144
CVE-2006-7144
SQL injection vulnerability in Call Center Software 0.93 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via the user name in the login page.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0217.htmlhttp://secunia.com/advisories/22365http://securityreason.com/securityalert/2389http://www.mayhemiclabs.com/advisories/MHL-2006-002.txthttp://www.securityfocus.com/archive/1/448423/100/0/threadedhttp://www.securityfocus.com/bid/20474