Lucene search
Yu-Chi DingEDB-ID:38781HistoryOct 02, 2013 - 12:00 a.m.
Alienvault Open Source SIEM (OSSIM) 3.1 - 'date_from' Multiple SQL Injections
2013-10-0200:00:00
Yu-Chi Ding
www.exploit-db.com
13
source: https://www.securityfocus.com/bid/62790/info
Open Source SIEM (OSSIM) is prone to multiple SQL-injection vulnerabilities.
A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Open Source SIEM (OSSIM) 4.3.0 and prior are vulnerable.
http://www.example.com/RadarReport/radar-iso27001-potential.php?date_from=%Inject_Here%
http://www.example.com/RadarReport/radar-iso27001-A12IS_acquisition-pot.php?date_from=%Inject_Here% Related
cvelist
cvelist
CVE-2013-5967
2013-10-09 14:44:00
prion
prion
Sql injection
2013-10-09 14:54:00
openvas
openvas
cve
cve
CVE-2013-5967
2013-10-09 14:54:26
nessus
nessus
OSSIM < 4.3.2 Multiple SQL Injection Vulnerabilities
2014-06-26 00:00:00
nvd
nvd
CVE-2013-5967
2013-10-09 14:54:26