Unauthenticated SQL Injection In IDAttend’s IDWeb Application
Vulnerability Details
Unauthenticated SQL injection in the GetExcursionDetails method in IDAttend’s IDWeb application 3.1.013 allows extraction or modification of all data by unauthenticated attackers.
Affected Versions
Discovered in: 3.1.013
Fixed Versions
Fixed in: 3.1.053