CVE-2007-6012
CVE-2007-6012 is a SQL injection in DocuSafe 4.1.0 and 4.1.2, exploitable via the artnr parameter in SearchR.asp to execute arbitrary SQL commands. Affected component: SearchR.asp in DocuSafe; root cause is unsafely concatenated/artnr input. Impact described as remote attackers may run arbitrary ...