CVE-2021-37413
CVE-2021-37413 affects GRANDCOM DynWEB before 4.2. The backend login script does not validate or sanitize user input, enabling a remote unauthenticated attacker to perform a SQL injection in the admin login interface. Consequences reported in sources include administrative access to the webpage, ...