OneOrZero AIMS Security Bypass And SQL Injection Vulnerabilities Network Vulnerability

Summary

OneOrZero AIMS is prone to a security-bypass vulnerability and an SQL- injection vulnerability. An attacker can exploit these issues to bypass certain security restrictions, perform unauthorized actions, bypass filtering, and modify the logic of SQL queries. OneOrZero AIMS 2.7.0 is affected other versions may also be affected.

References

http://en.securitylab.ru/lab/PT-2011-20
http://en.securitylab.ru/lab/PT-2011-21
http://www.kb.cert.org/vuls/id/800227
http://www.securityfocus.com/bid/50107

Updated on 2017-03-28

Severity

Classification

CVE CVE-2011-4215

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

68designs 68kb Multiple Remote File Include Vulnerabilities
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
ActivePerl perlIS.dll Buffer Overflow
Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability
ATutor < 1.5.1-pl1 Multiple Flaws

OneOrZero AIMS Security Bypass and SQL Injection Vulnerabilities

Take action and discover your vulnerabilities