CVSS: 7.5EPSS: 9%CPEs: 1EXPL: 1CVE-2008-3370 – EMC Centera Universal Access 4.0_4735.p4 - 'Username' SQL Injection
https://notcve.org/view.php?id=CVE-2008-3370
SQL injection vulnerability in the CUA Login Module in EMC Centera Universal Access (CUA) 4.0_4735.p4 allows remote attackers to execute arbitrary SQL commands via the user (user name) field. Vulnerabilidad de inyección SQL en CUA Login Module en EMC Centera Universal Access (CUA) 4.0_4735.p4, permite a atacantes remotos ejecutar comandos SQL de su elección a través del campo "user" (usuario). • https://www.exploit-db.com/exploits/32113 http://marc.info/?l=full-disclosure&m=121684757516717&w=2 http://secunia.com/advisories/31215 http://securityreason.com/securityalert/4066 http://www.securityfocus.com/bid/30358 http://www.securitytracker.com/id?1020540 http://www.vupen.com/english/advisories/2008/2219/references https://exchange.xforce.ibmcloud.com/vulnerabilities/43981 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •