4 matches found
CVE-2009-3042
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
Sql injection
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
CVE-2009-3042
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
CVE-2009-3040
OCS Inventory NG 1.02 for Unix is affected by multiple SQL injection vulnerabilities. The issues affect the web interface, specifically download.php parameters (N, DL, O, V) and group_show.php parameter (SYSTEMID), allowing remote attackers to inject and execute arbitrary SQL commands. The OpenVA...