SQL injection vulnerability in checkprofile.asp in (1) PatchLink Update Server (PLUS) prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1 and (2) Novell ZENworks 6.2 SR1 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the agentid parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lumension patchlink update server 6.1 |
||
novell zenworks |
||
lumension patchlink update server 6.2.0.181 |
||
lumension patchlink update server 6.2.0.189 |