CVE-2019-10852

Computrols CBAS 18.0.0 allows Authenticated Blind SQL Injection via the id GET parameter, as demonstrated by the index.php?m=servers&a=start_pulling&id= substring.
Configurations

Configuration 1

cpe:2.3:a:computrols:computrols_building_automation_software:*:*:*:*:*:*:*:*

Information

Published : 2019-05-23 07:29

Updated : 2019-11-12 07:15


NVD link : CVE-2019-10852

Mitre link : CVE-2019-10852

Products Affected
No products.
CWE