Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37644)
Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUPhaseStatus Acknowledge method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly inspect user-submitted...