Vulnerabilities > Advantech > Advantech Webaccess > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-02-21 | CVE-2012-0234 | SQL Injection vulnerability in Advantech Webaccess 5.0/6.0 SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary SQL commands via a malformed URL. | 7.5 |
2012-02-21 | CVE-2011-4521 | SQL Injection vulnerability in Advantech Webaccess 5.0/6.0 SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary SQL commands via crafted string input. | 7.5 |