EUVD-2016-1010

Malware in sbrugna...

Ipswitch WhatsUp Gold < 16.5.0 WrFreeFormText.asp sUniqueID Parameter Blind SQLi (credentialed)

According to its self-reported version number, the Ipswitch WhatsUp Gold application installed on the remote host is prior to 16.5.0. It is, therefore, affected by a SQL injection vulnerability within file WrFreeFormText.asp due to improper sanitization of user-supplied input to the 'sUniqueID'...

Ipswitch WhatsUp Gold SQL Injection Vulnerability (CNVD-2016-10073)

Ipswitch WhatsUp Gold is a suite of unified infrastructure and application monitoring software from Ipswitch USA. A SQL injection vulnerability exists in the sUniqueID parameter of the WrFreeFormText.asp script in Ipswitch WhatsUp Gold version 16.4.1, which can be exploited by remote attackers to...

CVE-2016-1000000

Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection...

PT-2016-4489 · Ipswitch · Ipswitch Whatsup Gold

Name of the Vulnerable Software and Affected Versions: Ipswitch WhatsUp Gold version 16.4.1 Description: The issue is related to a Blind SQL Injection in the sUniqueID parameter of the WrFreeFormText.asp page. This allows for potential unauthorized access to database information. Recommendations:...