6 matches found
EUVD-2013-6958
Malware in sbrugna...
CVE-2013-7175
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 Title, 2 File name, or 3 Candidate Name field...
Sql injection
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 Title, 2 File name, or 3 Candidate Name field...
CVE-2013-7175
The CVE refers to Avanset Visual CertExam Manager (version 3.3 and below) with a SQL injection vulnerability in the input fields Title, File name, and Candidate Name. The root cause is improper handling/validation of user-supplied data in these fields, allowing an authenticated remote attacker to...
CVE-2013-7175
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 Title, 2 File name, or 3 Candidate Name field...
Avanset Visual CertExam Manager 3.3 SQL injection vulnerability
Overview Avanset Visual CertExam Manager version 3.3 and below contain a SQL injection vulnerability. Description CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection'Avanset Visual CertExam Manager version 3.3 and below contain a SQL injection vulnerability d...