SQL Injection Vulnerability in sysPass 1.0.9 and Earlier on cygnux.org

CVE-2015-6516 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in cygnux.org sysPass 1.0.9 and earlier allows remote authenticated users to execute arbitrary SQL commands via the search parameter to ajax/ajax_search.php.

Learn more about our User Device Pen Test.