CVE-2020-13501

CVE-2020-13501

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticated SQL injection attacks.

Source: CVE-2020-13501

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다