5 matches found
EUVD-2012-1260
Malware in sbrugna...
Sql injection
SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0234...
CVE-2012-1234
SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0234...
CVE-2012-1234
CVE-2012-1234 describes an SQL injection in Advantech/BroadWin WebAccess 7.0 where remote authenticated users can execute arbitrary SQL via a malformed URL. The entry notes this vulnerability exists due to an incomplete fix for CVE-2012-0234. Connected records confirm affected product is Advantec...
CVE-2012-0234
Summary (useful, grounded in provided docs): CVE-2012-0234 (and related entries) describe an SQL injection flaw in Advantech/BroadWin WebAccess prior to 7.0, exploitable by remote authenticated users via a malformed URL to execute arbitrary SQL commands. Connected materials confirm WebAccess 7.0 ...