Interchange before 5.0.1 allows remote attackers to "expose the content of arbitrary variables" and read or modify sensitive SQL information via an HTTP request ending with the "__SQLUSER__" string.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-05-04 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-0374
Mitre link : CVE-2004-0374
CVE.ORG link : CVE-2004-0374
JSON object : View
Products Affected
interchange_development_group
- interchange
CWE