3 matches found
CVE-2011-4215
SQL injection vulnerability in lib/oozaccess.php in OneOrZero Action & Information Management System AIMS 2.7.0 allows remote attackers to execute arbitrary SQL commands via the cookieName variable...
CVE-2011-4214
CVE-2011-4214 concerns OneOrZero Action & Information Management System (AIMS) v2.7.0. The vulnerability is an authentication bypass : a crafted oozimsrememberme cookie allows remote attackers to obtain administrator privileges . Affected software: AIMS 2.7.0. Underlying issue: bypassing authenti...
CVE-2011-4215
SQL injection vulnerability in lib/oozaccess.php in OneOrZero Action & Information Management System AIMS 2.7.0 allows remote attackers to execute arbitrary SQL commands via the cookieName variable...