ESRI ArcGIS for Server 'where' Form Field SQL Injection Vulnerability

Bugtraq ID: 56474
Class: Input Validation Error
CVE: CVE-2012-4949
Remote: Yes
Local: No
Published: Nov 09 2012 12:00AM
Updated: Nov 09 2012 12:00AM
Credit: An anonymous researcher
Vulnerable: ESRI ArcGIS for Server 10.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus