An issue exists in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries, allowing SQL injection with an authenticated session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
polarisft intellect core banking 9.7.1 |