Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/12/2004 Updated: 29/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in problist.asp in NetSupport DNA HelpDesk 1.01 allows remote malicious users to execute arbitrary SQL commands via the where parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netsupport dna helpdesk 1.01

source: wwwsecurityfocuscom/bid/10772/info An SQL injection vulnerability is identified in the application that may allow attackers to pass malicious input to database queries, resulting in the modification of query logic or other attacks This vulnerability exists due to insufficient sanitization of user-supplied input through the 'whe ...

CWE-89 http://www.securiteam.com/windowsntfocus/5PP0L0ADGE.html http://www.securityfocus.com/bid/10772 http://www.osvdb.org/8169 http://secunia.com/advisories/12119 https://exchange.xforce.ibmcloud.com/vulnerabilities/16782 https://nvd.nist.gov https://www.exploit-db.com/exploits/24299/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-2737

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect