Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2066

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2066
Last Modified 25 Feb 2015 11:59:41
Published 24 Feb 2015 12:59:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2066

Summary

SQL injection vulnerability in DLGuard 4.5 allows remote attackers to execute arbitrary SQL commands via the c parameter to index.php.

Vulnerable Systems

Application

  • Dlguard 4.5


References

MISC - http://tetraph.com/security/sql-injection-vulnerability/dlguard-sql-injection-security-vulnerabilities/

MISC - http://securityrelated.blogspot.com/2015/02/dlguard-sql-injection-security.html

FULLDISC - 20150218 DLGuard SQL Injection Security Vulnerabilities


Last Updated: 27 May 2016 11:07:56