Sql injection

2007-06-2022:30:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.5%

JSON

SQL injection vulnerability in Spey before 0.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to MessageProcessor.cc and possibly other components.

CPENameOperatorVersion
speyle0.4.0

CPE	Name	Operator	Version
	spey	le	0.4.0

References

osvdb.org/38729

sourceforge.net/forum/forum.php?forum_id=687624

sourceforge.net/project/shownotes.php?group_id=108104&release_id=502366

spey.cvs.sourceforge.net/spey/spey/src/MessageProcessor.cc?view=log

www.vupen.com/english/advisories/2007/2249