Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61436
HistoryFeb 12, 2014 - 12:00 a.m.

Tableau Server SQL注入漏洞

2014-02-1200:00:00
Root
www.seebug.org
574

0.006 Low

EPSS

Percentile

78.9%

JSON

CVE(CAN) ID:CVE-2014-1204

Tableau Server是美国Tableau软件公司的一套桌面系统商业智能应用程序,它提供了一种基于浏览器的分析工具,能够将Tableau Desktop中交互式数据可视化内容、仪表盘、报告与工作簿的共享变得迅速简便。

Tableau Server 8.0.7之前的8.0.x版本和8.1.2之前的8.1.x版本中存在SQL注入漏洞。远程攻击者可利用该漏洞执行任意SQL命令。
0
Tableau Server 8.0.x (<8.0.7)
Tableau Server 8.1.x (<8.1.2)
厂商补丁:

Tableau Server

目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:

http://www.tableausoftware.com/support/releases/8.0.7
http://www.tableausoftware.com/support/releases/812


                                                http://127.0.0.1/views?modified_after=2013-12-08T23%3A00%3A00.000Z'%20or%20user%20like%20'Zrails

Related

zdt 1
cvelist 1
nvd 1
cve 1
prion 1
packetstorm 1
exploitpack 1
openvas 1
exploitdb 1
zdt
zdt
Tableau Server - Blind SQL Injection Vulnerability
2014-02-11 00:00:00
cvelist
cvelist
CVE-2014-1204
2014-01-31 15:00:00
nvd
nvd
CVE-2014-1204
2014-01-31 15:07:36
cve
cve
CVE-2014-1204
2014-01-31 15:07:36
prion
prion
Sql injection
2014-01-31 15:07:00
packetstorm
packetstorm
Tableau Server Blind SQL Injection
2014-02-11 00:00:00
exploitpack
exploitpack
Tableau Server 8.0.7 8.1.2 - Blind SQL Injection
2014-02-11 00:00:00
openvas
openvas
Tableau Server 8.0.x < 8.0.7, 8.1.x < 8.1.2 Unspecified SQLi Vulnerability
2015-11-09 00:00:00
exploitdb
exploitdb
Tableau Server &lt; 8.0.7 / &lt; 8.1.2 - Blind SQL Injection
2014-02-11 00:00:00

0.006 Low

EPSS

Percentile

78.9%

JSON
Related for SSV:61436
zdt1cvelist1nvd1cve1prion1packetstorm1exploitpack1openvas1exploitdb1