Vulnerabilities > Thomas Cuchta > Rash > 1.2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-09-18 | CVE-2009-3255 | SQL Injection vulnerability in Thomas Cuchta Rash SQL injection vulnerability in RASH Quote Management System (RQMS) 1.2.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI. | 6.8 |