SQL Injection in TecnoVISION DLX Spot Player4 Admin Interface

SQL Injection in TecnoVISION DLX Spot Player4 Admin Interface

CVE-2017-12930 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL Injection in the admin interface in TecnoVISION DLX Spot Player4 version >1.5.10 allows remote unauthenticated users to access the web interface as administrator via a crafted password.

Learn more about our Web App Pen Testing.