Unescaped User Input Vulnerability in IBM Informix Web DataBlade 4.12

CVE-2002-0555 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.