SQL injection vulnerability in Best Practical Solutions RT 2.x and 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users to execute arbitrary SQL commands by leveraging access to a privileged account.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication Single
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:N/AC:L/Au:S/C:P/I:P/A:P
Vendors | Products |
---|---|
Bestpractical |
|
Configuration 1 [-]
|
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2012-06-04T19:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2011-11-16T00:00:00
Link: CVE-2011-4460
JSON object: View
NVD Information
Status : Modified
Published: 2012-06-04T19:55:01.853
Modified: 2017-08-29T01:30:30.007
Link: CVE-2011-4460
JSON object: View
Redhat Information
No data.
CWE