Computer Security
[EN] no-pyccku

DescriptionSQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter.
PhaseAssigned (21.09.2015)
ReferencesBUGTRAQ : 20151013 Boolean-based SQL injection Vulnerability in K2 Platforms
SecurityVulns:Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod