CVE-2011-0467

Summary

A vulnerability in the listing of available software of SUSE Studio Onsite, SUSE Studio Onsite 1.1 Appliance allows authenticated users to execute arbitrary SQL statements via SQL injection. Affected releases are SUSE Studio Onsite: versions prior to 1.0.3-0.18.1, SUSE Studio Onsite 1.1 Appliance: versions prior to 1.1.2-0.25.1.

Affected Software

VendorProductVersion RangeStatus
SUSESUSE Studio Onsiteunspecified < 1.0.3-0.18.1affected
SUSESUSE Studio Onsite 1.1 Applianceunspecified < 1.1.2-0.25.1affected

Weaknesses

  • CWE-89: CWE-89

ADP Enrichment

CVE Program Container

Additional References

References