SQL injection vulnerability in Call Center Software 0.93 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via the user name in the login page.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0217.html | Exploit Vendor Advisory |
http://secunia.com/advisories/22365 | Vendor Advisory |
http://securityreason.com/securityalert/2389 | |
http://www.mayhemiclabs.com/advisories/MHL-2006-002.txt | Exploit Vendor Advisory |
http://www.securityfocus.com/archive/1/448423/100/0/threaded | |
http://www.securityfocus.com/bid/20474 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-07T20:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-03-07T00:00:00
Link: CVE-2006-7144
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-07T20:19:00.000
Modified: 2018-10-16T16:29:34.193
Link: CVE-2006-7144
JSON object: View
Redhat Information
No data.
CWE