Multiple SQL injection vulnerabilities in Xerox CentreWare Web (CWW) before 4.6.46 allow remote authenticated users to execute arbitrary SQL commands via the unspecified vectors.
| Software | From | Fixed in |
|---|---|---|
| xerox / centreware_web | - | 3.x |
| xerox / centreware_web | - | 2.0.x |
| xerox / centreware_web | - | 1.0.x |
| xerox / centreware_web | - | 4.6.42.x |