Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Maxsi Subscribe
Filtered by product Evisit Analyst
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3677 1 Maxsi 1 Evisit Analyst 2017-07-29 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in Maxsi eVisit Analyst allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) idsp1.pl, (2) ip.pl, and (3) einsite_director.pl. NOTE: this issue can be leveraged for path disclosure from resulting error messages.