CVE-2012-2576

2017-12-20T21:29:00
ID CVE-2012-2576
Type cve
Reporter cert@cert.org
Modified 2018-01-11T14:26:00

Description

SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.