OrderSys 'where_clause' Parameter Multiple SQL Injection Vulnerabilities

Bugtraq ID: 50550
Class: Input Validation Error
CVE: CVE-2010-5000
CVE-2011-5183
Remote: Yes
Local: No
Published: Nov 07 2011 12:00AM
Updated: Sep 21 2012 05:30PM
Credit: muuratsalo
Vulnerable: PHP Labware OrderSys 1.6.4
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus