Back to search
CVE-2013-3578
Published: Jul 15, 2013
Modified: Sep 17, 2024
PUBLISHED
Description
SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote authenticated users to execute arbitrary SQL commands via the ct100$4MainController$TextBoxSearchValue parameter (aka the search field), leading to execution of operating-system commands.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
VU#217836
third-party-advisory
x_refsource_CERT-VN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now