Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-28157

Disclosure Date: April 14, 2021 (last updated February 22, 2025)
An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a username in api/security/userinfo/delete.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0