CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Verifone: >> Vericentre Web Console >> 2.0.1 Security Vulnerabilities

CVE-2012-4951

Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web Console before 2.2 build 36 allow remote attackers to execute arbitrary SQL commands via the (1) TerminalId, (2) ModelName, or (3) ApplicationName parameter.

CVSS Score

7.5

EPSS Score

0.013

Published

2012-11-15

Page 1

Vulnerabilities

Vulnerable Software

Verifone: >> Vericentre Web Console >> 2.0.1 Security Vulnerabilities

Products

Pricing

Contact Us