Multiple SQL injection vulnerabilities in index.php in eGroupware before 1.0.0.007 allow remote attackers to execute arbitrary SQL commands via the (1) filter or (2) cats_app parameter.
Software | From | Fixed in |
---|---|---|
egroupware / egroupware | 1.0 | 1.0.x |
egroupware / egroupware | 1.0.1 | 1.0.1.x |
egroupware / egroupware | 1.0.3 | 1.0.3.x |
egroupware / egroupware | 1.0.6 | 1.0.6.x |