Kwoksys : Security Vulnerabilities, CVEs, CVSS score >= 5
SQL injection vulnerability in IT/hardware-list.dll in Kwoksys Kwok Information Server before 2.8.5 allows remote authenticated users to execute arbitrary SQL commands via the (1) hardwareType, (2) hardwareStatus, or (3) hardwareLocation parameter in a search command.
Max CVSS
6.5
EPSS Score
0.11%
Published
2013-10-11
Updated
2017-08-29
1 vulnerabilities found