4 matches found
CVE-2017-6550
CVE-2017-6550 affects Kinsey Infor-Lawson (formerly ESBUS). The vulnerability is a SQL injection in at least two parameters: (1) TABLE parameter to esbus/servlet/GetSQLData and (2) QUERY parameter to KK_LS9ReportingPortal/GetData. Exploitation enables remote attackers to execute arbitrary SQL com...
Kinsey Infor / Lawson / ESBUS - SQL Injection Vulnerability
Exploit for jsp platform in category web applications Exploit Title: Kinsey Infor / Lawson ESBUS - Multiple SQL Injections Date: 3/10/2017 Exploit Author: Michael Benich Vendor homepage: http://www.kinsey.com/infor-lawson.html Version: ALL Tested on: Windows Server 2008 R2; MySQL ver 5.5 CVE:...
Kinsey InforLawson ESBUS - SQL Injection
Kinsey InforLawson ESBUS - SQL Injection Exploit Title: Kinsey Infor / Lawson ESBUS - Multiple SQL Injections Date: 3/10/2017 Exploit Author: Michael Benich Vendor homepage: http://www.kinsey.com/infor-lawson.html Version: ALL Tested on: Windows Server 2008 R2; MySQL ver 5.5 CVE: CVE-2017-6550...
Kinsey Infor/Lawson / ESBUS - SQL Injection
Exploit Title: Kinsey Infor / Lawson ESBUS - Multiple SQL Injections Date: 3/10/2017 Exploit Author: Michael Benich Vendor homepage: http://www.kinsey.com/infor-lawson.html Version: ALL Tested on: Windows Server 2008 R2; MySQL ver 5.5 CVE: CVE-2017-6550 Kinsey's Infor-Lawson application formerly...