CVE-2017-12729

Summary

A SQL Injection issue was discovered in Moxa SoftCMS Live Viewer through 1.6. An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability has been identified. Attackers can exploit this vulnerability to access SoftCMS without knowing the user's password.

Affected Software

VendorProductVersion RangeStatus
n/aMoxa SoftCMS Live ViewerMoxa SoftCMS Live Vieweraffected

Weaknesses

  • CWE-89: CWE-89

ADP Enrichment

CVE Program Container

Additional References

References