CVE-2017-6088

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-6088
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-6088.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-6088
Published
2017-04-11T18:59:00Z
Modified
2024-09-03T01:53:27.188822Z
Severity
  • 7.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Multiple SQL injection vulnerabilities in EyesOfNetwork (aka EON) 5.0 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) bpname, (2) display, (3) search, or (4) equipment parameter to module/monitoringged/gedfunctions.php or the (5) type parameter to monitoringged/ajax.php.

References

Affected packages

Git / github.com/eyesofnetworkcommunity/eonweb

Affected ranges

Type
GIT
Repo
https://github.com/eyesofnetworkcommunity/eonweb
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

5.*

5.0-0