Vulnerabilities > Avanset

DATE CVE VULNERABILITY TITLE RISK
2014-01-24 CVE-2013-7175 SQL Injection vulnerability in Avanset Visual Certexam Manager
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) Title, (2) File name, or (3) Candidate Name field.
network
low complexity
avanset CWE-89
6.5
6.5