MaxBoard: Critical Stored XSS and SQL Injection Vulnerability Enables Remote Code Execution and Privilege Escalation
CVE-2021-26636 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.