An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to improper validation of user-supplied data, different functionalities of the C-MOR web interface are vulnerable to SQL injection attacks. This kind of attack allows an authenticated user to execute arbitrary SQL commands in the context of the corresponding MySQL database.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NC Mor Video Surveillance
APPC-Mor5.24016.00
Powiązane podatności
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input...
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation,...
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege management c...
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is stored in cle...
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation,...