OneOrZero AIMS Security Bypass And SQL Injection Vulnerabilities Network Vulnerability

Summary

OneOrZero AIMS is prone to a security-bypass vulnerability and an SQL- injection vulnerability. An attacker can exploit these issues to bypass certain security restrictions, perform unauthorized actions, bypass filtering, and modify the logic of SQL queries. OneOrZero AIMS 2.7.0 is affected other versions may also be affected.

References

http://en.securitylab.ru/lab/PT-2011-20
http://en.securitylab.ru/lab/PT-2011-21
http://www.kb.cert.org/vuls/id/800227
http://www.securityfocus.com/bid/50107

Updated on 2017-03-28

Severity

Classification

CVE CVE-2011-4215

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
Adobe ColdFusion Multiple Vulnerabilities-01 May-2014
ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
A-Blog 'sources/search.php' SQL Injection Vulnerability
AproxEngine Multiple Remote Input Validation Vulnerabilities

OneOrZero AIMS Security Bypass and SQL Injection Vulnerabilities

Take action and discover your vulnerabilities