Vulnerabilities

CVE-2013-7262

by Fred · 05/01/2014

SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter.

Date published : 2014-01-05

http://www.securityfocus.com/bid/64671

http://www.mapserver.org/development/changelog/changelog-6-4.html#changelog-6-4-1

Similar

Tags: Cybersecurity Alert