Thomas Cuchta: >> Rash >> 1.1 Security Vulnerabilities
SQL injection vulnerability in RASH Quote Management System (RQMS) 1.2.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI.
CVSS Score
6.8
EPSS Score
0.004
Published
2009-09-18