A vulnerability exists in gauge.php of AlienVault OSSIM and USM prior to 5.3.2 that allows an malicious user to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOAD_FILE.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alienvault unified security management |
||
alienvault open source security information and event management |