CVE-2014-9095

Multiple SQL injection vulnerabilities in Raritan Power IQ 4.1.0 and 4.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parameter to license/records.

Date published : 2014-11-26

http://www.securityfocus.com/bid/68722

http://seclists.org/fulldisclosure/2014/Jul/79