Vulnerabilities > Citrix > Broadcast Server > 6.0

DATE CVE VULNERABILITY TITLE RISK
2009-01-09 CVE-2008-5882 SQL Injection vulnerability in multiple products
SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) before 6.1, as used by Avaya AG250 - Broadcast Server before 2.0 and possibly other products, allows remote attackers to execute arbitrary SQL commands via the txtUID parameter.
network
low complexity
citrix avaya CWE-89
7.5