7.5
CVSSv2

CVE-2002-0878

Published: 04/10/2002 Updated: 05/09/2008
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in the login form for LogiSense software including (1) Hawk-i Billing, (2) Hawk-i ASP and (3) DNS Manager allows remote malicious users to bypass authentication via SQL code in the password field.

Vulnerable Product Search on Vulmon Subscribe to Product

logisense dns manager system

logisense hawk-i asp

logisense hawk-i 5.2