Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web Console before 2.2 build 36 allow remote attackers to execute arbitrary SQL commands via the (1) TerminalId, (2) ModelName, or (3) ApplicationName parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2012-11-15T11:00:00
Updated: 2024-08-06T20:50:18.169Z
Reserved: 2012-09-17T00:00:00
Link: CVE-2012-4951
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-11-15T11:58:40.057
Modified: 2024-11-21T01:43:48.680
Link: CVE-2012-4951
Redhat
No data.