Vulnerabilities > Rxtec

DATE CVE VULNERABILITY TITLE RISK
2018-09-24 CVE-2015-8298 SQL Injection vulnerability in Rxtec Rxadmin 2012
Multiple SQL injection vulnerabilities in the login page in RXTEC RXAdmin UPDATE 06 / 2012 allow remote attackers to execute arbitrary SQL commands via the (1) loginpassword, (2) loginusername, (3) zusatzlicher, or (4) groupid parameter to index.htm, or the (5) rxtec cookie to index.htm.
network
low complexity
rxtec CWE-89
critical
9.8