Multiple SQL injection vulnerabilities in dagent/downloadreport.asp in Novell ZENworks Patch Management (ZPM) prior to 6.3.2.700 allow remote malicious users to execute arbitrary SQL commands via the (1) agentid and (2) pass parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell zenworks patch management server 6.3.2.700 |