Vulnerabilities > Thomas Cuchta > Rash > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2009-09-18	CVE-2009-3255	SQL Injection vulnerability in Thomas Cuchta Rash SQL injection vulnerability in RASH Quote Management System (RQMS) 1.2.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI. network thomas-cuchta CWE-89	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.