GreenSQL Firewall (greensql-fw) before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character (%20).
References
Link | Resource |
---|---|
http://www.greensql.net/node/41 | Patch Vendor Advisory |
http://osvdb.org/48906 | Exploit |
http://www.greensql.net/security | Patch Vendor Advisory |
Configurations
Information
Published : 2009-09-14 07:30
Updated : 2009-09-14 07:30
NVD link : CVE-2008-7229
Mitre link : CVE-2008-7229
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
greensql
- greensql_firewall