📄 Log2Space Subscriber Management Software 1.1 SQL Injection

Log2Space Subscriber Management Software version 1.1 suffers from an unauthenticated remote SQL injection vulnerability. Author: Aditya Patil [email protected] Rohan Patil [email protected] CVE-2025-56450 Unauthenticated SQL Injection in Log2Space Subscriber Management Software...

CVE-2025-56450

Log2Space Subscriber Management Software 1.1 is vulnerable to unauthenticated SQL injection via the leadid parameter in the /l2s/api/selfcareLeadHistory endpoint. A remote attacker can exploit this by sending a specially crafted POST request, resulting in the execution of arbitrary SQL queries. T...

Spacecom Log2Space Subscriber Management Software 安全漏洞

Spacecom Log2Space Subscriber Management Software is a subscriber user management software from Spacecom India. A security vulnerability exists in Spacecom Log2Space Subscriber Management Software version 1.1, which stems from a failure to validate and clean the leadid parameter in the...

EUVD-2025-35180

Log2Space Subscriber Management Software 1.1 is vulnerable to unauthenticated SQL injection via the leadid parameter in the /l2s/api/selfcareLeadHistory endpoint. A remote attacker can exploit this by sending a specially crafted POST request, resulting in the execution of arbitrary SQL queries. T...

Log2Space Central 6.2 Cross Site Scripting

FULL DISCLOSURE Product : Log2Space Central Exploit Author : Rahul Pratap Singh Version : 6.2 Home page Link : http://www.spacecom.co.in/log2spacecentralserveroverview.html Website : 0x62626262.wordpress.com Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 Date : 27/Jan/2016 XSS...

log2space 6.2 Cross Site Scripting

Affected software: log2space Type of vulnerability:xss URL:http://www.spacecom.co.in/ Discovered by: provensec Website: provensec.com version: 6.2 Proof of concept http://host/cgi/transerr.php?pagePop=popup&errMsg=%22%3E%3Cimg%20src=d%20onerror=confirm1;%3E...