CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-12-18T16:00:00

Updated: 2024-08-05T20:59:17.613Z

Reserved: 2017-12-17T00:00:00

Link: CVE-2017-17721

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-12-18T16:29:00.210

Modified: 2024-11-21T03:18:31.490

Link: CVE-2017-17721

cve-icon Redhat

No data.