Vulnerabilities > ELO > Access Manager

DATE CVE VULNERABILITY TITLE RISK
2018-07-11 CVE-2018-10197 SQL Injection vulnerability in ELO Access Manager
There is a time-based blind SQL injection vulnerability in the Access Manager component before 9.18.040 and 10.x before 10.18.040 in ELO ELOenterprise 9 and 10 and ELOprofessional 9 and 10 that makes it possible to read all database content.
network
low complexity
elo CWE-89
7.5