1 results (0.001 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

SQL injection vulnerability in GeoNetwork opensource before 2.0.3 allows remote attackers to execute arbitrary SQL commands, and complete a login, via unspecified vectors. Vulnerabilidad de inyección de SQL en GeoNetwork opensource anterior a 2.0.3, permite a atacantes remotos ejecutar comandos SQL de su elección, y completar una conexión, mediante vectores sin especificar. • http://secunia.com/advisories/22502 http://sourceforge.net/project/shownotes.php?release_id=457195 http://www.securityfocus.com/bid/20671 http://www.vupen.com/english/advisories/2006/4151 https://exchange.xforce.ibmcloud.com/vulnerabilities/29771 •