SQL Injection Vulnerability in Advantech WebAccess Versions Prior to V8.2_20170817

SQL Injection Vulnerability in Advantech WebAccess Versions Prior to V8.2_20170817

CVE-2017-12710 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A SQL Injection issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. By submitting a specially crafted parameter, it is possible to inject arbitrary SQL statements that could allow an attacker to obtain sensitive information.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.