Saifor - Cvms Hub CVE

Filtered by vendor Saifor Subscribe

Filtered by product Cvms Hub

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-6792	1 Saifor	1 Cvms Hub	2024-11-21	6.5 MEDIUM	8.8 HIGH
Multiple SQL injection vulnerabilities in Saifor CVMS HUB 1.3.1 allow an authenticated user to execute arbitrary SQL commands via multiple parameters to the /cvms-hub/privado/seccionesmib/secciones.xhtml resource. The POST parameters are j_idt118, j_idt120, j_idt122, j_idt124, j_idt126, j_idt128, and j_idt130 under formularioGestionarSecciones:tablaSeccionesMib:*:filter. The GET parameter is nombreAgente.

Vulnerabilities (CVE)