1 results (0.004 seconds)
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-8953 – CA Workload Automation AE / CA Workload Control Center SQL Injection / Code Execution
https://notcve.org/view.php?id=CVE-2018-8953
30 Mar 2018 — CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request. CA Workload Automation AE en versiones anteriores a la r11.3.6 SP7 permite que los atacantes remotos realicen una inyección SQL mediante una petición HTTP manipulada. CA Technologies Support is alerting customers to two potential risks with CA Workload Automation AE and CA Workload Control Center. Two vulnerabilities exist that can allow a remote attacker to conduct SQL injection attac... • http://www.securityfocus.com/bid/103742 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •