CVE-2006-3348 Information

Feb 14, 2021 cve

Description

Multiple SQL injection vulnerabilities in HSPcomplete 3.2.2 and 3.3 Beta and earlier allow remote attackers to execute arbitrary SQL commands via the (1) type parameter in report.php and (2) level parameter in custom_buttons.php.

Reference

http://pridels0.blogspot.com/2006/06/hspcomplete-vuln.html https://exchange.xforce.ibmcloud.com/vulnerabilities/27379

Share on: