SQL Injection vulnerability in SearchTextBox parameter in Fortra (Formerly HelpSystems) DeliverNow before version 1.2.18, allows attackers to execute arbitrary code, escalate privileges, and gain sensitive information.
References
Link | Resource |
---|---|
https://community.helpsystems.com/knowledge-base/rjs/delivernow/overview/ | Third Party Advisory |
https://susos.co/blog/f/cve-disclosure-sedric-louissaints-discovery-of-sql-injection-in | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-18T00:00:00
Updated: 2023-09-18T23:41:01.327702
Reserved: 2021-02-05T00:00:00
Link: CVE-2021-26837
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-19T00:15:33.093
Modified: 2023-09-20T20:30:51.413
Link: CVE-2021-26837
JSON object: View
Redhat Information
No data.
CWE