6 matches found
CVE-2012-4951
Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web Console before 2.2 build 36 allow remote attackers to execute arbitrary SQL commands via the 1 TerminalId, 2 ModelName, or 3 ApplicationName parameter...
CVE-2012-4951
VeriFone VeriCentre Web Console (before 2.2 build 36) is affected by SQL injection in terminal/paramedit.aspx via TerminalId, ModelName, and ApplicationName parameters. The issue, CVE-2012-4951, allows remote attackers to execute arbitrary SQL commands. The original description and multiple sourc...
CVE-2012-4951
Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web Console before 2.2 build 36 allow remote attackers to execute arbitrary SQL commands via the 1 TerminalId, 2 ModelName, or 3 ApplicationName parameter...
VeriCentre - Multiple SQL Injections
VeriCentre - Multiple SQL Injections source: https://www.securityfocus.com/bid/56409/info VeriCentre is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacke...
VeriCentre - Multiple SQL Injections
source: https://www.securityfocus.com/bid/56409/info VeriCentre is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, acce...
VeriCentre web application SQL injection vulnerability
Overview The VeriCentre web application contains a SQL injection vulnerability. Description CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection'The VeriCentre web application contains a SQL injection vulnerability within the TerminalId, ModelName, and...