Schneider Electric U.motion Builder Remote Code Execution Vulnerability (CNVD-2017-09466)
U.motion Builder is a builder product from Schneider Electric France. A remote code execution vulnerability exists in Schneider Electric U.motion Builder. The underlying SQLite database query used to determine if a user is logged in requires SQL injection on the loginSeed parameter, which can be...