CVE-2015-6944

2015-09-15T14:59:03
ID CVE-2015-6944
Type cve
Reporter NVD
Modified 2015-09-16T10:46:44

Description

Cross-site request forgery (CSRF) vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp.