SQL Injection Vulnerability in Mutare Voice (EVM) 3.x

SQL Injection Vulnerability in Mutare Voice (EVM) 3.x

CVE-2021-27234 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. The web application suffers from SQL injection on Adminlog.asp, Archivemsgs.asp, Deletelog.asp, Eventlog.asp, and Evmlog.asp.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.