Vulnerabilities > Wikidsystems > TWO Factor Authentication Enterprise Server > High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-17	CVE-2019-17119	SQL Injection vulnerability in Wikidsystems TWO Factor Authentication Enterprise Server Multiple SQL injection vulnerabilities in Logs.jsp in WiKID 2FA Enterprise Server through 4.2.0-b2053 allow authenticated users to execute arbitrary SQL commands via the source or subString parameter. network low complexity wikidsystems CWE-89	8.8
2019-10-17	CVE-2019-16917	SQL Injection vulnerability in Wikidsystems TWO Factor Authentication Enterprise Server WiKID Enterprise 2FA (two factor authentication) Enterprise Server through 4.2.0-b2047 is vulnerable to SQL injection through the searchDevices.jsp endpoint. network low complexity wikidsystems CWE-89	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.