MaxBoard: Critical Stored XSS and SQL Injection Vulnerability Enables Remote Code Execution and Privilege Escalation

CVE-2021-26636 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.