VULHUB ™

It is reported that IPplan is susceptible to multiple unspecified SQL injection vulnerabilities. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. Successful exploitation could result in the compromise of the application, disclosure or modification of data or may permit an attacker to exploit vulnerabilities in the underlying database implementation. Versions prior to 4.0 of this package are reported vulnerable to these issues. This BID will be updated as further information about the specific vulnerabilities is disclosed.

It is reported that IPplan is susceptible to multiple unspecified SQL injection vulnerabilities. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. Successful exploitation could result in the compromise of the application, disclosure or modification of data or may permit an attacker to exploit vulnerabilities in the underlying database implementation. Versions prior to 4.0 of this package are reported vulnerable to these issues. This BID will be updated as further information about the specific vulnerabilities is disclosed.