Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

CVE-2015-0395: Oracle Critical Patch Update Advisory - January 2015

Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field.

CVE-2014-7812: Red Hat Customer Portal - Access to 24x7 support and knowledge

SQL injection vulnerability in EMC RSA Web Threat Detection 4.x before 4.6.1.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVE-2014-4627

SQL injection vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the tableprefix parameter.

    Vulnerability title: Wordpress bulletproof-security <=.51 multiplevulnerabilitiesAuthor: Pietro OlivaCVE: CVE-2014-7958, CVE-2014-7959, CVE-2014-8749Vendor: AITproProduct: bulletproof-securityAffected version: bulletproof-security <= .51Vulnerabilities fixed in version: .51.1Details:xss vulnerability (CVE-2014-7958):POST /wp-content/plugins/bulletproof-security/admin/htaccess/bpsunlock.phpHTTP/1.1dbname=&dbuser=&dbpassword=&dbhost=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&tableprefix=&username=&Login-Security-Unlock=Unlock+User+AccountSQL injection vulnerability (CVE-2014-7959, correct db username andpassword is required in order to exploit this):POST /wordpress/wp-content/plugins/bulletproof-security/admin/htaccess/bpsunlock.phpHTTP/1.1dbname=information_schema&dbuser=root&dbpassword=password&dbhost=&tableprefix=tables+into+outfile+'/tmp/tables'%3b+--+&username=&Login-Security-Unlock=Unlock+User+AccountSSRF vulnerability (CVE-2014-8749)POST /wp-content/plugins/bulletproof-security/admin/htaccess/bpsunlock.phpHTTP/1.1dbname=&dbuser=root&dbpassword&dbhost=remotedatabase.com&tableprefix=&username=&Login-Security-Unlock=Unlock+User+AccountPossible scenario:- the user sends a request with username, password, host and otherparameters to the vulnerable page- the server doesn't check the host parameter to be in a whitelist ofpermitted databases- the server performs an authentication request to a remote orinternal network database and gives back to the attacker theauthentication result-After n attemps the attacker has bypassed access restrictions (ifany) to the remote database, discovered the remote database password,and made it appear bulletproof-security as the source of the attack.Extra step:-If the sql injection flaw (CVE-2014-7959) is not fixed, an attackercould also execute arbitrary sql statement on the remote server, asthe vulnerable page executes a query if the authentication issuccessful (without filtering or use prepared statements). The sourceof the attack would appear to be the bulletproof-security vulnerablesite.

CVE-2014-7959: WordPress Bulletproof-Security .51 XSS / SQL Injection

Cross-site scripting (XSS) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dbhost parameter.

CVE-2014-7958: BulletProof Security

Multiple cross-site scripting (XSS) vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) kickstart/cobbler/CustomSnippetList.do, (2) channels/software/Entitlements.do, or (3) admin/multiorg/OrgUsers.do.

Skip to navigation Skip to main content

**Utilities**

*   Subscriptions
*   Downloads
*   Containers
*   Support Cases

![Red Hat Customer Portal](https://access.redhat.com/chrome_themes/nimbus/img/red-hat-customer-portal.svg)

**Infrastructure and Management**

*   Red Hat Enterprise Linux
*   Red Hat Virtualization
*   Red Hat Identity Management
*   Red Hat Directory Server
*   Red Hat Certificate System
*   Red Hat Satellite
*   Red Hat Subscription Management
*   Red Hat Update Infrastructure
*   Red Hat Insights
*   Red Hat Ansible Automation Platform

**Cloud Computing**

*   Red Hat OpenShift
*   Red Hat CloudForms
*   Red Hat OpenStack Platform
*   Red Hat OpenShift Container Platform
*   Red Hat OpenShift Data Science
*   Red Hat OpenShift Online
*   Red Hat OpenShift Dedicated
*   Red Hat Advanced Cluster Security for Kubernetes
*   Red Hat Advanced Cluster Management for Kubernetes
*   Red Hat Quay
*   Red Hat CodeReady Workspaces
*   Red Hat OpenShift Service on AWS

**Storage**

*   Red Hat Gluster Storage
*   Red Hat Hyperconverged Infrastructure
*   Red Hat Ceph Storage
*   Red Hat OpenShift Data Foundation

**Runtimes**

*   Red Hat Runtimes
*   Red Hat JBoss Enterprise Application Platform
*   Red Hat Data Grid
*   Red Hat JBoss Web Server
*   Red Hat Single Sign On
*   Red Hat support for Spring Boot
*   Red Hat build of Node.js
*   Red Hat build of Thorntail
*   Red Hat build of Eclipse Vert.x
*   Red Hat build of OpenJDK
*   Red Hat build of Quarkus
*   Red Hat CodeReady Studio

**Integration and Automation**

*   Red Hat Process Automation
*   Red Hat Process Automation Manager
*   Red Hat Decision Manager

All Products

Issued:

2014-10-30

Updated:

2014-10-30

**RHSA-2014:1762 - Security Advisory**

*   Overview
*   Updated Packages

**Synopsis**

Moderate: spacewalk-java security update

**Type/Severity**

Security Advisory: Moderate

**Red Hat Insights patch analysis**

Identify and remediate systems affected by this advisory.

View affected systems

**Topic**

Updated spacewalk-java packages that fix one security issue are now  
available for Red Hat Satellite 5.5 and 5.6.  

Red Hat Product Security has rated this update as having Moderate security  
impact. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available from the CVE link in the  
References section.  

**Description**

Red Hat Satellite is a systems management tool for Linux-based  
infrastructures. It allows for provisioning, monitoring, and remote  
management of multiple Linux deployments with a single, centralized tool.  
The spacewalk-java packages contain the code for the Java version of the  
Spacewalk Web site.  

Stored and reflected cross-site scripting (XSS) flaws were found in the way  
spacewalk-java displayed certain information. By sending a specially  
crafted request to Satellite, a remote, authenticated attacker could embed  
HTML content into the stored data, allowing them to inject malicious  
content into the web page that is used to view that data. (CVE-2014-3654)  

Red Hat would like to thank Ron Bowes of Google for reporting this issue.  

All spacewalk-java users are advised to upgrade to these updated packages,  
which contain a backported patch to correct this issue.  

**Solution**

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.  

This update is available via the Red Hat Network. Details on how to  
use the Red Hat Network to apply this update are available at  
https://access.redhat.com/articles/11258

**Affected Products**

*   Red Hat Satellite 5.6 for RHEL 6 x86\_64
*   Red Hat Satellite 5.6 for RHEL 6 s390x
*   Red Hat Satellite 5.6 for RHEL 5 x86\_64
*   Red Hat Satellite 5.6 for RHEL 5 s390x
*   Red Hat Satellite with Embedded Oracle 5.5 for RHEL 6 x86\_64
*   Red Hat Satellite with Embedded Oracle 5.5 for RHEL 6 s390x
*   Red Hat Satellite with Embedded Oracle 5.5 for RHEL 5 x86\_64
*   Red Hat Satellite with Embedded Oracle 5.5 for RHEL 5 s390x

**Fixes**

*   BZ - 1144628 - CVE-2014-3654 Satellite: Spacewalk contains multiple XSS (stored and reflected)

**Red Hat Satellite 5.6 for RHEL 6**

SRPM

spacewalk-java-2.0.2-90.el6sat.src.rpm

SHA-256: 4dc66ae5a4d9838a488b12e97b0da9494a27c59855c0268995da209f22bdee70

x86\_64

spacewalk-java-2.0.2-90.el6sat.noarch.rpm

SHA-256: 2aae4307ab4a2e8ef75c8130499ec1263f080bf240b6c7c5656d6b9f6b017158

spacewalk-java-config-2.0.2-90.el6sat.noarch.rpm

SHA-256: be6e5ffff08a59b798d178ad005624f8323301eb3dbf1ebea01f96c6f503399b

spacewalk-java-lib-2.0.2-90.el6sat.noarch.rpm

SHA-256: 29df44a5b391cc614672ceba63a4949fb36f84e001e6f2abdf5fd13dc44aac03

spacewalk-java-oracle-2.0.2-90.el6sat.noarch.rpm

SHA-256: 777cb65c0231b33413b09890fb0193f02f89c3476fc4db6bf48dd34b6e842679

spacewalk-java-postgresql-2.0.2-90.el6sat.noarch.rpm

SHA-256: 0ef480de7fce7f6088c47686bccdfbd126f975b6e3c2847510f819e8c40b35e4

spacewalk-taskomatic-2.0.2-90.el6sat.noarch.rpm

SHA-256: f19449d1075086eeb47ab6178e1b1bf9f471b7e19f8f546638af36fdb603b5cb

s390x

spacewalk-java-2.0.2-90.el6sat.noarch.rpm

SHA-256: 2aae4307ab4a2e8ef75c8130499ec1263f080bf240b6c7c5656d6b9f6b017158

spacewalk-java-config-2.0.2-90.el6sat.noarch.rpm

SHA-256: be6e5ffff08a59b798d178ad005624f8323301eb3dbf1ebea01f96c6f503399b

spacewalk-java-lib-2.0.2-90.el6sat.noarch.rpm

SHA-256: 29df44a5b391cc614672ceba63a4949fb36f84e001e6f2abdf5fd13dc44aac03

spacewalk-java-oracle-2.0.2-90.el6sat.noarch.rpm

SHA-256: 777cb65c0231b33413b09890fb0193f02f89c3476fc4db6bf48dd34b6e842679

spacewalk-java-postgresql-2.0.2-90.el6sat.noarch.rpm

SHA-256: 0ef480de7fce7f6088c47686bccdfbd126f975b6e3c2847510f819e8c40b35e4

spacewalk-taskomatic-2.0.2-90.el6sat.noarch.rpm

SHA-256: f19449d1075086eeb47ab6178e1b1bf9f471b7e19f8f546638af36fdb603b5cb

**Red Hat Satellite 5.6 for RHEL 5**

SRPM

spacewalk-java-2.0.2-90.el5sat.src.rpm

SHA-256: 8ee449cfe3e21903fc8bc7b9c49a76dc06cb5bd478f20a02229b2423d52ba0ba

x86\_64

spacewalk-java-2.0.2-90.el5sat.noarch.rpm

SHA-256: 734082ad31b61a912290a0f477cd141cf9b7af3e8792f8f1c55ddd28204399f9

spacewalk-java-config-2.0.2-90.el5sat.noarch.rpm

SHA-256: 626a2206f3378fc5b42a26606053a55e3c3089813ebdae413913364457e82f6d

spacewalk-java-lib-2.0.2-90.el5sat.noarch.rpm

SHA-256: 2ba3f51387607b0eed2eed7dbc25a4a78e5703fbfbaf3895207d11234f626e62

spacewalk-java-oracle-2.0.2-90.el5sat.noarch.rpm

SHA-256: 0d0099682890f6f17d92b8ea84250489892d29a47c22ba158fb373ee7f59e884

spacewalk-java-postgresql-2.0.2-90.el5sat.noarch.rpm

SHA-256: 06db21f5e19f368a0508031ac4e9e434c8d13b676a5c2ab9e2e53428fa251522

spacewalk-taskomatic-2.0.2-90.el5sat.noarch.rpm

SHA-256: e6683947958934359cb194a046839ed8954352e7338f292c1ee400264b83bf7d

s390x

spacewalk-java-2.0.2-90.el5sat.noarch.rpm

SHA-256: 734082ad31b61a912290a0f477cd141cf9b7af3e8792f8f1c55ddd28204399f9

spacewalk-java-config-2.0.2-90.el5sat.noarch.rpm

SHA-256: 626a2206f3378fc5b42a26606053a55e3c3089813ebdae413913364457e82f6d

spacewalk-java-lib-2.0.2-90.el5sat.noarch.rpm

SHA-256: 2ba3f51387607b0eed2eed7dbc25a4a78e5703fbfbaf3895207d11234f626e62

spacewalk-java-oracle-2.0.2-90.el5sat.noarch.rpm

SHA-256: 0d0099682890f6f17d92b8ea84250489892d29a47c22ba158fb373ee7f59e884

spacewalk-java-postgresql-2.0.2-90.el5sat.noarch.rpm

SHA-256: 06db21f5e19f368a0508031ac4e9e434c8d13b676a5c2ab9e2e53428fa251522

spacewalk-taskomatic-2.0.2-90.el5sat.noarch.rpm

SHA-256: e6683947958934359cb194a046839ed8954352e7338f292c1ee400264b83bf7d

**Red Hat Satellite with Embedded Oracle 5.5 for RHEL 6**

SRPM

spacewalk-java-1.7.54-131.el6sat.src.rpm

SHA-256: f251ae43e77fc52aa15813c4855c133157e84e90c63d01820cc0d0f38cc67517

x86\_64

spacewalk-java-1.7.54-131.el6sat.noarch.rpm

SHA-256: d44336a2a30d79b6601cd051b4aeeec6e674e784d7b7650d7fd3830483c6c819

spacewalk-java-config-1.7.54-131.el6sat.noarch.rpm

SHA-256: 3ada95b114f232d1f98700dac352f2cd9c6d6e09a54bb3e1b172dafbb9428af9

spacewalk-java-lib-1.7.54-131.el6sat.noarch.rpm

SHA-256: 85843ff2ec66e89738ea282024fbae6db24cb375d5f45563b869e0c5377bc0ec

spacewalk-java-oracle-1.7.54-131.el6sat.noarch.rpm

SHA-256: 9b261bc3dca4f787e6ec9d6f480aeab611c9657386a948caf13e032b2a511af9

spacewalk-taskomatic-1.7.54-131.el6sat.noarch.rpm

SHA-256: 317ce0b53ce20b80a065e89cc6262ca3f48fef2f44e3f8095ff77225b029e6aa

s390x

spacewalk-java-1.7.54-131.el6sat.noarch.rpm

SHA-256: d44336a2a30d79b6601cd051b4aeeec6e674e784d7b7650d7fd3830483c6c819

spacewalk-java-config-1.7.54-131.el6sat.noarch.rpm

SHA-256: 3ada95b114f232d1f98700dac352f2cd9c6d6e09a54bb3e1b172dafbb9428af9

spacewalk-java-lib-1.7.54-131.el6sat.noarch.rpm

SHA-256: 85843ff2ec66e89738ea282024fbae6db24cb375d5f45563b869e0c5377bc0ec

spacewalk-java-oracle-1.7.54-131.el6sat.noarch.rpm

SHA-256: 9b261bc3dca4f787e6ec9d6f480aeab611c9657386a948caf13e032b2a511af9

spacewalk-taskomatic-1.7.54-131.el6sat.noarch.rpm

SHA-256: 317ce0b53ce20b80a065e89cc6262ca3f48fef2f44e3f8095ff77225b029e6aa

**Red Hat Satellite with Embedded Oracle 5.5 for RHEL 5**

SRPM

spacewalk-java-1.7.54-131.el5sat.src.rpm

SHA-256: 28eaa46bb4e741125f0ce589fedb64388ad7de76e93611e9166ac9b8ba61ed2f

x86\_64

spacewalk-java-1.7.54-131.el5sat.noarch.rpm

SHA-256: 6801a4933f2321f6e77dd265fbc81ded524b65ac6b08d7da553f890d56859dbe

spacewalk-java-config-1.7.54-131.el5sat.noarch.rpm

SHA-256: 9008347fe5176b7416d98b88917934cc9dc5b68a6358d9b107860411e05f9c4b

spacewalk-java-lib-1.7.54-131.el5sat.noarch.rpm

SHA-256: 02222aec8a321fb2ebe234fdf2f0aed91456e2d4f96386d1b8ec6a714e1b52df

spacewalk-java-oracle-1.7.54-131.el5sat.noarch.rpm

SHA-256: b297de890089e3d62953d2b746946292f852926454c90543f7590d006115271e

spacewalk-taskomatic-1.7.54-131.el5sat.noarch.rpm

SHA-256: 941eea12cd14658869fade271e4c36b78ac35f105e669806be522dc6e7e5257f

s390x

spacewalk-java-1.7.54-131.el5sat.noarch.rpm

SHA-256: 6801a4933f2321f6e77dd265fbc81ded524b65ac6b08d7da553f890d56859dbe

spacewalk-java-config-1.7.54-131.el5sat.noarch.rpm

SHA-256: 9008347fe5176b7416d98b88917934cc9dc5b68a6358d9b107860411e05f9c4b

spacewalk-java-lib-1.7.54-131.el5sat.noarch.rpm

SHA-256: 02222aec8a321fb2ebe234fdf2f0aed91456e2d4f96386d1b8ec6a714e1b52df

spacewalk-java-oracle-1.7.54-131.el5sat.noarch.rpm

SHA-256: b297de890089e3d62953d2b746946292f852926454c90543f7590d006115271e

spacewalk-taskomatic-1.7.54-131.el5sat.noarch.rpm

SHA-256: 941eea12cd14658869fade271e4c36b78ac35f105e669806be522dc6e7e5257f

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

CVE-2014-3654: Red Hat Customer Portal - Access to 24x7 support and knowledge

WP-Ban plugin before 1.6.4 for WordPress, when running in certain configurations, allows remote attackers to bypass the IP blacklist via a crafted X-Forwarded-For header.

**Full Disclosure mailing list archives**

_From_: dxw Security <security () dxw com>  
_Date_: Wed, 17 Sep 2014 13:59:56 +0000  

Details
================
Software: WP-Ban
Version: 1.62
Homepage: http://wordpress.org/plugins/wp-ban/
Advisory report: 
https://security.dxw.com/advisories/vulnerability-in-wp-ban-allows-visitors-to-bypass-the-ip-blacklist-in-some-configurations/
CVE: CVE-2014-6230
CVSS: 5 (Medium; AV:N/AC:L/Au:N/C:P/I:N/A:N)

Description
================
Vulnerability in WP-Ban allows visitors to bypass the IP blacklist in some configurations

Vulnerability
================
This plugin allows blacklisting users based on their IP address, however it takes the IP address from the 
X-Forwarded-For header if available.
Not all Web server configurations will strip or replace X-Forwarded-For headers – in which case the IP ban can be 
bypassed by sending this header. This plugin therefore only works in certain configurations, but does not warn admins 
of this fact.

Proof of concept
================

Visit http://localhost/wp-admin/admin.php?page=wp-ban/ban-options.php
Set “Banned IPs” to “127.0.0.1″
Execute “curl http://localhost/\\"; and see the “You Are Banned” message
Execute “curl http://localhost/ -H \\'X-Forwarded-For: 999.999.999.999\\'\\" and see that it displays the page

Note that this will not work if your Web server sets or strips X-Forwarded-For headers.
(To remove the IP blacklist run this SQL: “delete from wp\_options where option\_name=\\'banned\_ips\\';\\")

Mitigations
================
Upgrade to version 1.6.4 or later.
If a reverse-proxy is used, check the “I am using a reverse proxy” box in the plugin settings, and ensure that 
X-Forwarded-For headers are being set even if the request already contains an X-Forwarded-For header.

Disclosure policy
================
dxw believes in responsible disclosure. Your attention is drawn to our disclosure policy: 
https://security.dxw.com/disclosure/

Please contact us on security () dxw com to acknowledge this report if you received it via a third party (for example, 
plugins () wordpress org) as they generally cannot communicate with us on your behalf.

This vulnerability will be published if we do not receive a response to this report with 14 days.

Timeline
================

2014-08-27: Discovered
2014-09-04: Reported to vendor by email
2014-09-04: Requested CVE
2014-09-04: Vendor responded
2014-09-17: Vendor reported a fixed version released
2014-09-17: Published



Discovered by dxw:
================
Tom Adams
Please visit security.dxw.com for more information.
          


\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

**Current thread:**

*   **Vulnerability in WP-Ban allows visitors to bypass the IP blacklist in some configurations (WordPress plugin)** _dxw Security (Sep 17)_

CVE-2014-6230: Vulnerability in WP-Ban allows visitors to bypass the IP blacklist in some configurations (WordPress plugin)

Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2014-6493, CVE-2014-6503, and CVE-2014-6532.

CVE-2014-4288: Oracle Critical Patch Update - October 2014

Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER.

CVE-2014-6469: Oracle Critical Patch Update - October 2014

SQL injection vulnerability in TrackItWeb/Grid/GetData in BMC Track-It! 11.3.0.355 allows remote authenticated users to execute arbitrary SQL commands via crafted POST data.

**BMC Track-It! contains multiple vulnerabilities**

**Vulnerability Note VU#121036**

Original Release Date: 2014-10-07 | Last Revised: 2014-10-27

**Overview**

BMC Track-It! version 11.3.0.355 contains multiple vulnerabilities

**Description**

**CWE-306****: Missing Authentication for Critical Function -** **CVE-2014-4872**

BMC Track-It! exposes several dangerous remote .NET services on port 9010 without authentication. .NET remoting allows a user to invoke methods remotely and retrieve their result. The exposed service

FileStorageService

allows for arbitrary file upload and code execution. The exposed service

ConfigurationService

allows for retrieval of configuration files which contain both application and domain credentials.

**CWE-89****: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') -** **CVE-2014-4873**  
An authenticated user can engage in blind SQL Injection by entering comparison operators in the POST string for the

/TrackItWeb/Grid/GetData

page.

**CWE-264****: Permissions, Privileges, and Access Controls -** **CVE-2014-4874**  
A remote authenticated user can download arbitrary files on the

 /TrackItWeb/Attachment

page.

The vendor, BMC, has issued the following statement:

_BMC has issued an advisory to all Track-IT customers with the details of the disclosed vulnerabilities and the availability of hotfixes._  
_Resolved issues:_

*   _CWE-89: SQL Injection - CVE-2014-4873_
*   _Hotfix available_
*   _See Article ID TIA07454 on Numara support site_
*   _CWE-264: Arbitrary file download - CVE-2014-4874_
*   _Hotfix available_
*   _See Article ID TIA07453 on Numara support site_

_Resolutions under development:_

*   _CWE-306: Improper Authentication for .NET services - CVE-2014-4872_
*   _Until hotfixes are available we recommend that you block all communications from untrusted networks to TCP/UDP ports 9010 to 9020. This will also block SelfService and trackitweb from being used from external networks._
*   _See Articles TIA07456, TIA07457. And TIA07455 for current status_

_If you have any questions regarding this security notification, please contact Track-It! Support by opening a case at: https://support.numarasoftware.com/_

The CVSS score reflects CVE-2014-4872.

**Impact**

A remote unauthenticated attacker may be able to upload and download arbitrary files and execute arbitrary code.

**Solution**

**Apply an Update**  
BMC has issued several hotfixes and recommendations to mitigate these vulnerabilities. Please see the statement above for details.

**Use a Firewall**  
Using a firewall to block inbound requests to port 9010 will prevent access to the vulnerable methods, although it may interfere with normal program operation.

**Vendor Information**

Filter by content: Additional information available

 Sort by:

  
**CVSS Metrics**

Group

Score

Vector

Base

10

AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal

8.1

E:F/RL:W/RC:UC

Environmental

6.1

CDP:ND/TD:M/CR:ND/IR:ND/AR:ND

  
**References****Acknowledgements**

Thanks to Pedro Ribeiro (pedrib@gmail.com) from Agile Information Security for reporting this vulnerability.

This document was written by Chris King.

**Other Information**

Tag

#sql