3 matches found
CVE-2018-1000044
Security Onion Solutions Squert version 1.1.1 through 1.6.7 contains a SQL Injection vulnerability in .inc/callback.php that can result in execution of SQL commands. This attack appear to be exploitable via Web request to .inc/callback.php with the payload in the sensors parameter, used in ec. Th...
CVE-2018-1000044
Security Onion Solutions Squert version 1.1.1 through 1.6.7 contains a SQL Injection vulnerability in .inc/callback.php that can result in execution of SQL commands. This attack appear to be exploitable via Web request to .inc/callback.php with the payload in the sensors parameter, used in ec. Th...
CVE-2018-1000044
Security Onion Solutions Squert versions 1.1.1–1.6.7 contain a SQL injection in .inc/callback.php that can lead to execution of SQL commands via a web request with the payload in the sensors parameter (via ec()). The issue is fixed in version 1.7.0. Affected product: Squert; vulnerable component:...