Vulnerabilities > Progress > Whatsup Gold > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-01-24 CVE-2018-5778 SQL Injection vulnerability in Progress Whatsup Gold
An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1).
network
low complexity
progress CWE-89
critical
9.8
2016-01-08 CVE-2015-8261 SQL Injection vulnerability in Progress Whatsup Gold 16.3
The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML objects, which allows remote attackers to conduct SQL injection attacks via a crafted SOAP request.
network
low complexity
progress CWE-89
critical
9.8