SQL injection vulnerability in machine.php in Open Computer and Software (OCS) Inventory NG 1.02.1 allows remote malicious users to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ocsinventory-ng ocs inventory ng 1.02.1 |