SysAid 20.3.64 b14 is affected by Blind and Stacker SQL injection via AssetManagementChart.jsp (GET computerID), AssetManagementChart.jsp (POST group1), AssetManagementList.jsp (GET computerID or group1), or AssetManagementSummary.jsp (GET group1).
References
Link | Resource |
---|---|
https://eh337.net/2021/04/10/sysaid-ii/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-07-22T11:54:57
Updated: 2021-07-22T11:54:57
Reserved: 2021-04-10T00:00:00
Link: CVE-2021-30486
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-07-22T12:15:07.927
Modified: 2021-07-31T00:38:11.307
Link: CVE-2021-30486
JSON object: View
Redhat Information
No data.
CWE