RSS   Vulnerabilities for 'Apache authcas'   RSS

2007-12-13
 
CVE-2007-6342

CWE-89
 

 
SQL injection vulnerability in the David Castro AuthCAS module (AuthCAS.pm) 0.4 for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the SESSION_COOKIE_NAME (session ID) in a cookie.

 


Copyright 2017, cxsecurity.com