Computer Security
[EN] securityvulns.ru no-pyccku


Open-Xchange SQL injection
Published:10.11.2014
Source:
SecurityVulns ID:14085
Type:library
Threat Level:
6/10
Description:SQLi in jslob API.
Affected:OPENXCHANGE : Open-Xchange 7.6
CVE:CVE-2014-7871 (SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.)
Original documentdocumentOPENXCHANGE, Open-Xchange Security Advisory 2014-11-07 (10.11.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod