Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0555


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0555
Last Modified 05 Sep 2008 04:28:19
Published 03 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.

Vulnerable Systems


  • Ibm Informix Web Datablade 4.10

  • Ibm Informix Web Datablade 4.11

  • Ibm Informix Web Datablade 4.12

  • Ibm Informix Web Datablade 4.13


BID - 4498

XF - informix-wbm-sql-decoding(8827)

BUGTRAQ - 20020411 IBM Informix Web DataBlade: Auto-decoding HTML entities

Last Updated: 27 May 2016 10:36:58