4 matches found
EUVD-2007-3661
Malware in sbrugna...
CVE-2007-3677
Multiple SQL injection vulnerabilities in Maxsi eVisit Analyst allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 idsp1.pl, 2 ip.pl, and 3 einsitedirector.pl. NOTE: this issue can be leveraged for path disclosure from resulting error messages...
Sql injection
Multiple SQL injection vulnerabilities in Maxsi eVisit Analyst allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 idsp1.pl, 2 ip.pl, and 3 einsitedirector.pl. NOTE: this issue can be leveraged for path disclosure from resulting error messages...
CVE-2007-3677
CVE-2007-3677 affects Maxsi eVisit Analyst. Multiple SQL injection vulnerabilities allow remote attackers to supply id to (1) idsp1.pl, (2) ip.pl, and (3) einsite_director.pl, enabling arbitrary SQL execution and potentially path disclosure through error messages. Exploitation details and fixes a...