Vulnerabilities > Geodesicsolutions > Geocore MAX
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-27 | CVE-2014-3871 | SQL Injection vulnerability in Geodesicsolutions Geocore MAX 7.3.3 Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via the (1) c[password] or (2) c[username] parameter. | 7.5 |