Advantech WebAccess 'updateTemplate.aspx' SQL Injection and Authentication Bypass Vulnerabilities

Bugtraq ID: 95410
Class: Input Validation Error
CVE: CVE-2017-5154
CVE-2017-5152
Remote: Yes
Local: No
Published: Jan 12 2017 12:00AM
Updated: Jan 23 2017 06:05AM
Credit: Tenable Network Security
Vulnerable: Advantech WebAccess 8.1
Not Vulnerable: Advantech WebAccess 8.2


 

Privacy Statement
Copyright 2010, SecurityFocus