Unauthenticated SQL injection via the username in the login mechanism in Blaauw Remote Kiln Control through v3.00r4 allows a user to extract arbitrary data from the rkc database.
CPE | Name | Operator | Version |
---|---|---|---|
remote_kiln_control | eq | 3.0.0 r4 | |
remote_kiln_control | le | 3.0.0 |