CVE-2015-7299

2015-10-21T14:59:05
ID CVE-2015-7299
Type cve
Reporter NVD
Modified 2018-10-09T15:58:01

Description

SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter.