RSS   Vulnerabilities for 'Ordersys'   RSS

2012-09-20
 
CVE-2011-5183

 

 
Multiple SQL injection vulnerabilities in OrderSys 1.6.4 and earlier allow remote attackers to execute arbitrary SQL commands via the where_clause parameter to (1) index.php, (2) index_long.php, or (3) index_short.php in ordering/interface_creator/.

 

 >>> Vendor: Bioinformatics 2 Products
Htmlawed
Ordersys


Copyright 2024, cxsecurity.com

 

Back to Top