Description
SQL injection vulnerability in b0zz and Chris Vincent Owl Intranet Engine 0.90 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Affected products
- b0zz_and_chris_vincent / owl_intranet_engine0.90 – 0.90
References
- MISChttp://jvn.jp/jp/JVN%2339103264/index.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/28404
- MISChttp://sourceforge.net/tracker/index.php?func=detail&aid=1540643&group_id=9444&atid=309444
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/3285
- VENDOR_ADVISORYhttp://secunia.com/advisories/21519
- MISChttp://www.securityfocus.com/bid/19552