High

DATE	CVE	VULNERABILITY TITLE	RISK
2010-04-28	CVE-2010-1595	SQL Injection vulnerability in Ocsinventory-Ng OCS Inventory NG 1.02.1 Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the (1) c, (2) val_1, or (3) onglet_bis parameter. network low complexity ocsinventory-ng CWE-89	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.