6.5
CVSSv2

CVE-2014-2043

Published: 13/03/2014 Updated: 09/10/2018
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen prior to 1.1.18.1658 allows remote authenticated users to execute arbitrary SQL commands via the value parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

procentia intellipen

Exploits

CVE: CVE-2014-2043 Vendor: Procentia Product: IntelliPen Affected version: 11121520 Fixed version: 11181658 Reported by: Jerzy Kramarz Details: SQL injection has been found and confirmed within the software as an authenticated user A successful attack could allow an authenticated attacker to access information such as usernames and pa ...
Procentia IntelliPen version 11121520 suffers from a remote SQL injection vulnerability ...