1 results (0.008 seconds)
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0
CVE-2018-8953
https://notcve.org/view.php?id=CVE-2018-8953
CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request. CA Workload Automation AE en versiones anteriores a la r11.3.6 SP7 permite que los atacantes remotos realicen una inyección SQL mediante una petición HTTP manipulada. • http://www.securityfocus.com/bid/103742 http://www.securitytracker.com/id/1040605 https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180329-01--security-notice-for-ca-workload-automation-ae.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •