CVE-2002-0555

IBM Informix Web DataBlade 4.12 unescapes user input even if an application has escaped it, which could allow remote attackers to execute SQL code in a web form even when the developer has attempted to escape it.

Date published : 2002-06-11

http://www.securityfocus.com/bid/4498

http://archives.neohapsis.com/archives/bugtraq/2002-04/0137.html