rConfig is an open source network device configuration management utility. rConfig version 3.9.5 is vulnerable to a SQL injection vulnerability that stems from an unvalidated dbName parameter in ajaxDbInstall.php, which can be exploited by attackers to access sensitive database information.
CPE | Name | Operator | Version |
---|---|---|---|
rconfig rconfig | eq | 3.9.5 |