3 matches found
CVE-2014-5159
SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the wsdata parameter...
CVE-2014-5159
SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the wsdata parameter...
CVE-2014-5159
CVE-2014-5159 affects AlienVault OSSIM prior to 4.6.0 via the ossim-framework service. The vulnerability arises from improper handling of the ws_data parameter, allowing remote attackers to inject SQL commands (no authentication required per ZDI), potentially leading to SQL execution and, per adv...