← voltar
CVE-2011-1686

CVE-2011-1686

EPSS 1.3%
Multiple SQL injection vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, as demonstrated by reading data.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://blog.bestpractical.com/2011/04/security-vulnerabilities-in-rt.htmlhttp://lists.bestpractical.com/pipermail/rt-announce/2011-April/000187.htmlhttp://lists.bestpractical.com/pipermail/rt-announce/2011-April/000188.htmlhttp://lists.bestpractical.com/pipermail/rt-announce/2011-April/000189.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=696795http://secunia.com/advisories/44189https://exchange.xforce.ibmcloud.com/vulnerabilities/66792http://www.debian.org/security/2011/dsa-2220http://www.securityfocus.com/bid/47383http://www.vupen.com/english/advisories/2011/1071