Virtua Cobranca before 12R allows SQL Injection on the login page.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/167480/Virtua-Software-Cobranca-12S-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
https://github.com/luca-regne/my-cves/tree/main/CVE-2021-37589 | Exploit Third Party Advisory |
https://www.virtuasoftware.com.br/conteudo.php?content=downloads&lang=pt-br | Broken Link Vendor Advisory |
Configurations
History
31 Jan 2023, 17:27
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/167480/Virtua-Software-Cobranca-12S-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry |
19 Jun 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Jun 2022, 15:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:virtuasoftware:cobranca:*:*:*:*:*:*:*:* | |
First Time |
Virtuasoftware cobranca
Virtuasoftware |
|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-89 | |
References | (MISC) https://github.com/luca-regne/my-cves/tree/main/CVE-2021-37589 - Exploit, Third Party Advisory | |
References | (MISC) https://www.virtuasoftware.com.br/conteudo.php?content=downloads&lang=pt-br - Broken Link, Vendor Advisory |
07 Jun 2022, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-07 14:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-37589
Mitre link : CVE-2021-37589
CVE.ORG link : CVE-2021-37589
JSON object : View
Products Affected
virtuasoftware
- cobranca
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')