CVE-2014-3973CVE-2014-3973

Affected configuration(s):

cpe:/a:frontaccounting:frontaccounting:2.3:beta
cpe:/a:frontaccounting:frontaccounting:2.3:rc
cpe:/a:frontaccounting:frontaccounting:2.3:rc1
cpe:/a:frontaccounting:frontaccounting:2.3:rc2
cpe:/a:frontaccounting:frontaccounting:2.3:rc3
cpe:/a:frontaccounting:frontaccounting:2.3.0:-
cpe:/a:frontaccounting:frontaccounting:2.3.1
cpe:/a:frontaccounting:frontaccounting:2.3.2
cpe:/a:frontaccounting:frontaccounting:2.3.3
cpe:/a:frontaccounting:frontaccounting:2.3.4
cpe:/a:frontaccounting:frontaccounting:2.3.5
cpe:/a:frontaccounting:frontaccounting:2.3.6
cpe:/a:frontaccounting:frontaccounting:2.3.7
cpe:/a:frontaccounting:frontaccounting:2.3.8
cpe:/a:frontaccounting:frontaccounting:2.3.9
cpe:/a:frontaccounting:frontaccounting:2.3.10
cpe:/a:frontaccounting:frontaccounting:2.3.11
cpe:/a:frontaccounting:frontaccounting:2.3.12
cpe:/a:frontaccounting:frontaccounting:2.3.13
cpe:/a:frontaccounting:frontaccounting:2.3.14
cpe:/a:frontaccounting:frontaccounting:2.3.15
cpe:/a:frontaccounting:frontaccounting:2.3.16
cpe:/a:frontaccounting:frontaccounting:2.3.17
cpe:/a:frontaccounting:frontaccounting:2.3.18
cpe:/a:frontaccounting:frontaccounting:2.3.19
cpe:/a:frontaccounting:frontaccounting:2.3.20

Date published: 2014-06-05T13:55:07.823-04:00

Date last modified: 2014-06-06T09:55:42.787-04:00

CVSS Score: 7.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://frontaccounting.com/wb3/pages/posts/release-2.3.21201.php

Summary: Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.3.21 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.