RSS   Vulnerabilities for 'Infor-lawson'   RSS

2017-03-20
 
CVE-2017-6550

 

 
Multiple SQL injection vulnerabilities in Kinsey Infor-Lawson (formerly ESBUS) allow remote attackers to execute arbitrary SQL commands via the (1) TABLE parameter to esbus/servlet/GetSQLData or (2) QUERY parameter to KK_LS9ReportingPortal/GetData.

 


Copyright 2024, cxsecurity.com

 

Back to Top