Description
SQL injection vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by anonymous · textwebappsphp
https://www.exploit-db.com/exploits/36000
References (7)
Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/48924
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/8321
Vendor Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=131188727830971&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68886
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/74134
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45454
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025862
Scores
EPSS
0.0073
EPSS Percentile
72.9%
Details
CWE
CWE-89
Status
published
Products (5)
hp/network_automation
7.2
hp/network_automation
7.5
hp/network_automation
7.6
hp/network_automation
9.0
hp/network_automation
9.10
Published
Aug 01, 2011
Tracked Since
Feb 18, 2026