HIGH🇵🇱 Wersja polska

CVE-2014-2376

CVSS 7.5v2.0pub. 2014-09-15upd. 2026-05-06

SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Ecava Integraxor

    APP
    Ecava
    ≤ 4.1.4392≤ 4.1.4360
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
References

Related vulnerabilities

CVE-2017-6050CRITICAL9.8ten sam produkt

A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails ...

CVE-2016-8341CRITICAL9.8ten sam produkt

An issue was discovered in Ecava IntegraXor Version 5.0.413.0. The Ecava IntegraXor web server has parameters ...

CVE-2016-2306HIGH7.5ten sam produkt

The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive clear...

CVE-2016-2299HIGH7.3ten sam produkt

SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbit...

CVE-2014-2375HIGH8.3ten sam produkt

Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attacker...