vendor:
ADC2000 NG Pro
by:
Unknown
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: ADC2000 NG Pro
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: No
Related CWE: Not available
CPE: Not available
Platforms Tested: Unknown
Unknown
ADC2000 NG Pro SQL Injection Vulnerabilities
The ADC2000 NG Pro application fails to properly sanitize user-supplied input before using it in an SQL query, which can lead to SQL injection vulnerabilities. An attacker can exploit these vulnerabilities to compromise the application, disclose or modify data, or exploit vulnerabilities in the underlying database implementation.
Mitigation:
To mitigate the SQL injection vulnerabilities in ADC2000 NG Pro, it is recommended to implement proper input validation and sanitization techniques. This includes using parameterized queries or prepared statements to handle user input securely.