Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2015/03/20 12:0 a.m.18 views

Fedora 20 : mapserver-6.2.2-1.fc20 (2014-17559)

Update to latest 6.2 release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

6.8CVSS5.4AI score0.0222EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2015/03/20 12:0 a.m.21 views

Fedora Update for mapserver FEDORA-2014-17567

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.0222EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/03/20 12:0 a.m.18 views

Fedora Update for mapserver FEDORA-2014-17559

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.0222EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/03/20 12:0 a.m.13 views

Fedora 21 : mapserver-6.2.2-1.fc21 (2014-17567)

Update to latest 6.2 release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

6.8CVSS5.4AI score0.0222EPSS
Exploits1References4
OSV
OSV
added 2015/03/06 6:8 p.m.7 views

MGASA-2015-0097 Updated mapserver packages fix CVE-2013-7262 and packaging issues

Updated mapserver packages fix security vulnerability: SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TI...

6.8CVSS8.1AI score0.0222EPSS
Exploits1References4
seebug.org
seebug.org
added 2014/01/07 12:0 a.m.42 views

MapServer PostGIS TIME Filter SQL注入漏洞

CVE ID:CVE-2013-7262 MapServer是用于创建交互式地图应用的多平台程序。 某些传递到PostGIS TIME filters的未明输入在用于SQL查询前未能正确过滤,攻击者可以通过注入任意SQL代码操纵SQL查询。 0 MapServer 6.x 厂商补丁: MapServer ----- MapServer 6.4.1版本以修复此漏洞,建议用户下载使用: http://www.mapserver.org/development/changelog/changelog-6-4.htmlchanges-from-6-4-0-to-6-4-1...

6.8CVSS0.2AI score0.0222EPSS
Exploits1
NVD
NVD
added 2014/01/05 8:55 p.m.22 views

CVE-2013-7262

SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter...

6.8CVSS8AI score0.0222EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2014/01/05 8:55 p.m.18 views

CVE-2013-7262

SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter...

6.8CVSS6.2AI score0.0222EPSS
Exploits1References4
CVE
CVE
added 2014/01/05 8:0 p.m.68 views

CVE-2013-7262

The vulnerability CVE-2013-7262 affects MapServer (MapServer before 6.4.1) in the msPostGISLayerSetTimeFilter function (mappostgis.c). When using a WMS-Time service, a crafted PostGIS TIME filter can lead to remote SQL command execution, exposing SQL injection risk with partial confidentiality/in...

6.8CVSS8.2AI score0.0222EPSS
Exploits1References4Affected Software2
Debian CVE
Debian CVE
added 2014/01/05 8:0 p.m.22 views

CVE-2013-7262

SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter...

6.8CVSS8.1AI score0.0222EPSS
Exploits1
Rows per page
Query Builder