Sql injection

SQL injection vulnerability in the BOKUBLOCK 1 BbAdminViewsControl213 plugin before 1.1 and 2 BbAdminViewsControl plugin before 2.1 for EC-CUBE allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

CVE-2015-7784

SQL injection vulnerability in the BOKUBLOCK 1 BbAdminViewsControl213 plugin before 1.1 and 2 BbAdminViewsControl plugin before 2.1 for EC-CUBE allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

CVE-2015-7784

CVE-2015-7784 affects EC-CUBE via the BbAdminViewsControl213 plugin (versions before 1.1) and BbAdminViewsControl plugin (versions before 2.1). The vulnerability is an SQL injection (CWE-89) that allows a logged-in, remote, authenticated attacker to execute arbitrary SQL commands via unspecified ...

JVN#55545372: EC-CUBE plugin BbAdminViewsControl vulnerable to SQL injection

BbAdminViewsControl from BOKUBLOCK CO., LTD. is an EC-CUBE plugin. BbAdminViewsControl contains an SQL injection vulnerability CWE-89. Impact A logged in attacker may execute SQL statements. According to the developer, this vulnerability affects availability of the server that EC-CUBE resides, bu...