CVE-2018-7501

CVE-2018-7501

Vendor Advantech
Product WebAccess
Weakness CWE-89 · SQLi
Published May 15, 2018
Last update September 16, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

01Description

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several SQL injection vulnerabilities have been identified, which may allow an attacker to disclose sensitive information from the host.

Key dates

02Disclosure timeline

May 15, 2018 CVE published
September 16, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-6628 phili67 Ecclesia CRM Query Viewer view ValidateInput sql injection CVE-2026-0575 code-projects Online Product Reservation System Administrator Login adminlogin.php sql injection CVE-2024-3224 SourceCodester PHP Task Management System task-details.php sql injection CVE-2026-11507 CodeAstro Leave Management System delete_leave_type.php sql injection CVE-2021-44161 Changing Information Technology Inc. MOTP(Mobile One Time Password) - SQL Injection