3 matches found
Sql injection
SQL injection vulnerability in the web-based management interface on Cisco RV220W devices allows remote attackers to execute arbitrary SQL commands via a crafted header in an HTTP request, aka Bug ID CSCuv29574...
CVE-2015-6319
SQL injection vulnerability in the web-based management interface on Cisco RV220W devices allows remote attackers to execute arbitrary SQL commands via a crafted header in an HTTP request, aka Bug ID CSCuv29574...
CVE-2015-6319
CVE-2015-6319 affects Cisco RV220W devices. A vulnerability in the web-based management interface arises from insufficient input validation of HTTP request headers, allowing remote attackers to submit crafted SQL statements that are processed by the device’s database. The result is an SQL injecti...