Informix Web Datablade

CVEs (3)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2002-0554	IBM Informix Web Datablade	0.04	—	0.07	Jul 3, 2002	webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request.
CVE-2001-0924	Informix Web DataBlade	0.04	—	0.08	Nov 22, 2001	Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter.
CVE-2002-0555	IBM Informix Web Datablade	0.00	—	0.02	Jul 3, 2002	IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.

CVE-2002-0554Jul 3, 2002
IBM
Informix Web Datablade
risk 0.04cvss —epss 0.07
webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers to bypass user access levels or read arbitrary files via a SQL injection attack in an HTTP request.
CVE-2001-0924Nov 22, 2001
Informix
Web DataBlade
risk 0.04cvss —epss 0.08
Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter.
CVE-2002-0555Jul 3, 2002
IBM
Informix Web Datablade
risk 0.00cvss —epss 0.02
IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.