Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-11597

Disclosure Date: April 06, 2020 (last updated February 21, 2025)
An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an HTTP POST request and inject SQL statements in the user context of the db owner.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0