IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:LIBM Concert
APPIbm1.0.01.0.11.0.21.0.2.1
Related vulnerabilities
IBM Concert 1.0.0 through 2.1.0 could allow a local user with specific knowledge about the system's architectu...
IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the content of the fi...
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race condition ...
IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds chec...
IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to cause a denial of service using a sp...