There is an SQL injection vulnerability in Advantech...
Moderate severity
Unreviewed
Published
Mar 22, 2024
to the GitHub Advisory Database
•
Updated Mar 22, 2024
Description
Published by the National Vulnerability Database
Mar 21, 2024
Published to the GitHub Advisory Database
Mar 22, 2024
Last updated
Mar 22, 2024
There is an SQL injection vulnerability in Advantech WebAccess/SCADA software that allows an authenticated attacker to remotely inject SQL code in the database. Successful exploitation of this vulnerability could allow an attacker to read or modify data on the remote database.
References