Arbitrary SQL Command Execution Vulnerability in Video Insight VMS 7.3.2.5 and Earlier

Arbitrary SQL Command Execution Vulnerability in Video Insight VMS 7.3.2.5 and Earlier

CVE-2019-5996 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SQL injection vulnerability in the Video Insight VMS 7.3.2.5 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.