RSS   Vulnerabilities for 'Airline booking software'   RSS

2015-10-01
 
CVE-2015-2858

 

 
Datalex airline booking software before 2015-09-03 allows remote attackers to read or write to arbitrary user data via a modified profileId parameter to (1) ValidateFormAction.do or (2) ProfileConfirmEditAddressAction.do.

 

 >>> Vendor: Datalex 2 Products
Bookit consumer
Airline booking software


Copyright 2017, cxsecurity.com

 

Back to Top