An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters that are vulnerable to SQL injection. If the queries are not sanitized, the host's database could be subject to read, write, and delete commands.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/95907 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-17-031-02 | Mitigation Third Party Advisory US Government Resource |
Configurations
History
No history.
Information
Published : 2017-02-13 21:59
Updated : 2024-02-04 19:11
NVD link : CVE-2016-8341
Mitre link : CVE-2016-8341
CVE.ORG link : CVE-2016-8341
JSON object : View
Products Affected
ecava
- integraxor
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')