4 matches found
CVE-2017-5154
creationtimestamp| type| source ---|---|--- 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:57+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd...
Advantech WebAccess < 8.2_20161101 Multiple Vulnerabilities
Binary data 9961.prm...
Advantech WebAccess updateTemplate.aspx SQL Injection (CVE-2017-5154)
An SQL injection vulnerability has been reported in Advantech WebAccess. The vulnerability is due to insufficient validation of the template parameter in HTTP request sent to the updateTemplate.aspx. A remote attacker could exploit this vulnerability by sending a HTTP request with a malicious SQL...
Advantech WebAccess
CVSS V3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Advantech Equipment: WebAccess Vulnerabilities: Authentication Bypass, SQL Injection AFFECTED PRODUCTS The following WebAccess version is affected: WebAccess Version 8.1 IMPACT Successful exploitation of this...