Blind SQL Injection Vulnerability in TeamMate+ Audit Version 28.0.19.0

Blind SQL Injection Vulnerability in TeamMate+ Audit Version 28.0.19.0

CVE-2021-41932 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.