1 results (0.001 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter. Se ha detectado una vulnerabilidad de inyección SQL en Unified Office Total Connect Now que permitiría a un atacante extraer información confidencial mediante de un parámetro de cookie • https://unifiedoffice.com/total-connect-now https://www.coresecurity.com/core-labs/advisories/unified-office-total-connect-sql-injection • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •