SQL Injection Vulnerability in Invigo ADM 5.0's /admin/display_errors.php Script

CVE-2020-10582 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A SQL injection on the /admin/display_errors.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to execute arbitrary SQL requests (including data reading and modification) on the database.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.