2 matches found
CVE-2018-7773
The vulnerability exists within processing of nfcserver.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the sessionid input parameter...
CVE-2018-7773
CVE-2018-7773 affects Schneider Electric U.motion Builder software prior to v1.3.4. The vulnerability is in nfcserver.php where the underlying SQLite query is vulnerable to SQL injection via the sessionid parameter. Consequences are described in the CVSS metrics as high impact for confidentiality...