SQL Injection Vulnerability in Zingbox Inspector Management Interface

SQL Injection Vulnerability in Zingbox Inspector Management Interface

CVE-2019-15016 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An SQL injection vulnerability exists in the management interface of Zingbox Inspector versions 1.288 and earlier, that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.