3 matches found
CVE-2020-3936
The CVE-2020-3936 issue concerns the UltraLog Express device management interface from Unisoon. Affected component: the device management interface that fails to properly filter user-inputted strings in specific parameters, enabling SQL injection. Root cause: lack of input validation/filtering le...
CVE-2020-3936 Unisoon UltraLog Express - SQL Injection
UltraLog Express device management interface does not properly filter user inputted string in some specific parameters, attackers can inject arbitrary SQL command...
CVE-2020-3936 Unisoon UltraLog Express - SQL Injection
UltraLog Express device management interface does not properly filter user inputted string in some specific parameters, attackers can inject arbitrary SQL command...