SQL injection vulnerability in the LiveData service in CSWorks before 2.5.5233.0 allows remote attackers to execute arbitrary SQL commands via vectors related to pathnames contained in web API requests.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2014-05-20T10:00:00
Updated: 2024-08-06T10:14:25.131Z
Reserved: 2014-03-13T00:00:00
Link: CVE-2014-2351
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-05-20T11:13:37.873
Modified: 2015-10-08T14:47:15.180
Link: CVE-2014-2351
Redhat
No data.