Improper Neutralization of Special Elements used in an SQL Command (βSQL Injectionβ) in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.
CPE | Name | Operator | Version |
---|---|---|---|
advanced_threat_defense | lt | 4.8 |