Full title: Device Manager Express 7.8.20002.47752 SQL Injection / XSS / Code Execution / Traversal 
Category: web applications
Platform: php
Device Manager Express versions 7.8.20002.47752 and below suffer from code execution, command execution, cross site scripting, remote SQL injection, and traversal vulnerabilities.

# 0day.today @ http://0day.today/