CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2002-0878

HIGH
7.5
CVSS Severity Score
EPSS Score0.1050%
EPSS Percentile8.53th
Published2002年10月4日
Last Modified2026年4月16日

Vulnerability Description

SQL injection vulnerability in the login form for LogiSense software including (1) Hawk-i Billing, (2) Hawk-i ASP and (3) DNS Manager allows remote attackers to bypass authentication via SQL code in the password field.

Affected Platforms (CPE)

📦
Logisense

Dns Manager System

All versions
📦
Logisense

Hawk I

= 5.2
📦
Logisense

Hawk I

= asp

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-06/0010.html
🔗 http://www.iss.net/security_center/static/9268.php
🔗 http://www.securityfocus.com/bid/4931
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-06/0010.html
🔗 http://www.iss.net/security_center/static/9268.php
🔗 http://www.securityfocus.com/bid/4931

相關漏洞威脅

CVE-2020-16458.3

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an inc...

CVE-2017-61648.1

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software...

CVE-2019-131767.5

An issue was discovered in the 3CX Phone system (web) management console 12.5.44178.1002 through 12.5 SP2. The Content.MainForm.wg...

CVE-2021-230327.5

On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x, when a BIG-I...