CRITICAL🇬🇧 English

CVE-2016-8341

CVSS 9.8v3.0pub. 2017-02-13upd. 2026-05-13

An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters that are vulnerable to SQL injection. If the queries are not sanitized, the host's database could be subject to read, write, and delete commands.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ecava Integraxor

    APP
    Ecava
    5.0.413.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
SQLi
CWE
Referencje

Powiązane podatności

CVE-2017-6050CRITICAL9.8ten sam produkt

A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails ...

CVE-2016-2306HIGH7.5ten sam produkt

The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive clear...

CVE-2016-2299HIGH7.3ten sam produkt

SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbit...

CVE-2014-2376HIGH7.5ten sam produkt

SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and...

CVE-2014-2375HIGH8.3ten sam produkt

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attacker...