Multiple SQL Injection Vulnerabilities in Ipswitch WhatsUp Gold

Multiple SQL Injection Vulnerabilities in Ipswitch WhatsUp Gold

CVE-2018-5778 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Multiple SQL injection vulnerabilities are present in the legacy .ASP pages, which could allow attackers to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.