SEC Consult SA-20120220-0 :: Multiple critical vulnerabilities in VOXTRONIC voxlog professional

SEC Consult Vulnerability Lab Security Advisory 20120220-0 ======================================================================= title: Multiple critical vulnerabilities product: VOXTRONIC voxlog professional - voice recording solution vulnerable version: VOXTRONIC voxlog professional = 3.7.2.7...

VOXTRONIC Voxlog Professional 3.7.x - 'userlogdetail.php?idclient' SQL Injection

source: https://www.securityfocus.com/bid/52081/info VOXTRONIC Voxlog Professional is prone to a file-disclosure vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An remote attacker can exploit these issues to obtain potentially...

VOXTRONIC Voxlog Professional 3.7.x - 'get.php?v' Arbitrary File Access

source: https://www.securityfocus.com/bid/52081/info VOXTRONIC Voxlog Professional is prone to a file-disclosure vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An remote attacker can exploit these issues to obtain potentially...

VOXTRONIC Voxlog Professional 3.7.x - userlogdetail.php?idclient SQL Injection

VOXTRONIC Voxlog Professional 3.7.x - userlogdetail.php?idclient SQL Injection source: https://www.securityfocus.com/bid/52081/info VOXTRONIC Voxlog Professional is prone to a file-disclosure vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize...

VOXTRONIC Voxlog Professional Multiple Security Vulnerabilities

VOXTRONIC Voxlog Professional is prone to a file-disclosure vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An remote attacker can exploit these issues to obtain potentially sensitive information from local files on computers...

VOXTRONIC Voxlog Professional 3.7.x - get.php?v Arbitrary File Access

VOXTRONIC Voxlog Professional 3.7.x - get.php?v Arbitrary File Access source: https://www.securityfocus.com/bid/52081/info VOXTRONIC Voxlog Professional is prone to a file-disclosure vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input...

VOXTRONIC Voxlog Professional Multiple Security Vulnerabilities

VOXTRONIC Voxlog Professional is prone to a file disclosure vulnerability and multiple SQL injection SQLi vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and a...

VOXTRONIC Voxlog Professional 3.7.2.729 SQL Injection / Disclosure

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple critical vulnerabilities product: VOXTRONIC voxlog professional - voice recording solution vulnerable version: VOXTRONIC voxlog professional = 3.7.2.729 webclien...