CVE Vulnerabilities

CVE-2002-0555

Published: Jul 03, 2002 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.

Affected Software

Name Vendor Start Version End Version
Informix_web_datablade Ibm 4.10 4.10
Informix_web_datablade Ibm 4.11 4.11
Informix_web_datablade Ibm 4.13 4.13
Informix_web_datablade Ibm 4.12 4.12

References