CVE-2017-12710 - AskarLabs CVE Database

CVE-2017-12710

Vendor N/A

Product Advantech WebAccess

Weakness CWE-89 · SQLi

Published August 30, 2017

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A SQL Injection issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. By submitting a specially crafted parameter, it is possible to inject arbitrary SQL statements that could allow an attacker to obtain sensitive information.

Key dates

02Disclosure timeline

August 30, 2017 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-12710 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

04Related CVE

CVE-2016-15016 mrtnmtth joomla_mod_einsatz_stats helper.php getStatsByType sql injection CVE-2026-22206 SPIP < 4.4.10 SQL Injection RCE via Union & PHP Tags CVE-2025-11319 nahiduddinahammed Hospital-Management-System-Website delete.php sql injection CVE-2025-11070 Projectworlds Online Shopping System cart_add.php sql injection CVE-2024-6111 itsourcecode Pool of Bethesda Online Reservation System login.php sql injection