CVE-2020-25157

Summary

The R-SeeNet webpage (1.5.1 through 2.4.10) suffers from SQL injection, which allows a remote attacker to invoke queries on the database and retrieve sensitive information.

Affected Software

VendorProductVersion RangeStatus
n/aAdvantech R-SeeNetVersions 1.5.1 through 2.4.10affected

Weaknesses

  • IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USE IN AN SQL COMMAND ('SQL INJECTION')

ADP Enrichment

CVE Program Container

Additional References

References