2 matches found
CVE-2007-6012
SQL injection vulnerability in SearchR.asp in DocuSafe 4.1.0 and 4.1.2 allows remote attackers to execute arbitrary SQL commands via the artnr parameter aka the search section. NOTE: some of these details are obtained from third party information...
CVE-2007-6012
CVE-2007-6012 is a SQL injection in DocuSafe 4.1.0 and 4.1.2, exploitable via the artnr parameter in SearchR.asp to execute arbitrary SQL commands. Affected component: SearchR.asp in DocuSafe; root cause is unsafely concatenated/artnr input. Impact described as remote attackers may run arbitrary ...