3 matches found
CVE-2011-1913
SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2011-1913
Mercator SENTINEL 2.0 contains an SQL injection in the web interface login form that could allow remote attackers to execute arbitrary SQL commands. CERT-NETPEAS notes it could enable authentication bypass to gain administrative access. The issue is addressed in SENTINEL version 2.0.1.0; upgrade ...
Mercator SENTINEL SQL injection allows authentication bypass
Overview Mercator SENTINEL contains an SQL injection vulnerability that could allow an attacker to bypass authentication and access the system with administrative privileges. Description Mercator SENTINEL is a flight safety management system. The login form of the web interface contains an SQL...