Vulnerabilities > Advantech > Advantech Webaccess > High

DATE CVE VULNERABILITY TITLE RISK
2012-02-21 CVE-2012-0234 SQL Injection vulnerability in Advantech Webaccess 5.0/6.0
SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary SQL commands via a malformed URL.
network
low complexity
advantech CWE-89
7.5
7.5
2012-02-21 CVE-2011-4521 SQL Injection vulnerability in Advantech Webaccess 5.0/6.0
SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary SQL commands via crafted string input.
network
low complexity
advantech CWE-89
7.5
7.5