2 matches found
CVE-2017-14851
A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The vulnerability is in the login page, where the authentication validation process contains an insecure SELECT query. The attack allows for authentication bypass...
CVE-2017-14851
The CVE-2017-14851 entry describes an SQL injection in the login page of Orpak SiteOmat, allowing authentication bypass. Affected are SiteOmat versions prior to 2017-09-25; the vulnerability stems from an insecure SELECT query in the authentication validation. Several connected sources corroborat...