A SQL injection vulnerability exists in Wecul Nyron version 1.0, which stems from a lack of validation of externally entered SQL statements in thes1 parameter of Nyron/Library/Catalog/winlibsrch.aspx. validation of external input SQL statements. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
wecul nyron | eq | 1.0 |