3 matches found
CVE-2015-3424
SQL injection vulnerability in Accentis Content Resource Management System before the October 2015 patch allows remote attackers to execute arbitrary SQL commands via the SIDX parameter...
CVE-2015-3424
CVE-2015-3424 affects Accentis Content Resource Management System. A SQL injection vulnerability exists in the SIDX parameter that allows remote attackers to execute arbitrary SQL commands. The issue is tied to input filtering flaws prior to the October 2015 patch; patched versions released aroun...
Accentis Content Resource Management System SQL Injection
Issue 1 Vulnerability type: SQL Injection Vendor: http://www.accentis.com.au/ Product: Accentis Content Resource Management System Credit: Foo Jong Meng, Chia Junyuan, Benjamin Tan CVE ID: CVE-2015-3424 PROOF OF CONCEPT SQLi Accentis Content Resource Management System before October 2015 patch...