3 matches found
CVE-2010-4861
CVE-2010-4861 is a SQL injection in webSPELL 4.2.1 affecting the asearch.php script. The vulnerability allows remote attackers to pass the search parameter to trigger arbitrary SQL execution. Documented details indicate a network-accessible issue with no authentication required and partial confid...
CVE-2010-4861
SQL injection vulnerability in asearch.php in webSPELL 4.2.1 allows remote attackers to execute arbitrary SQL commands via the search parameter...
CVE-2010-4861
creationtimestamp| type| source ---|---|--- 2010-09-29 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15151...