Demarc PureSecure 1.05 allows remote malicious users to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
demarc security puresecure 1.0.5_for_unix |
||
demarc security puresecure 1.0.5_for_windows |